News

Gesundheitswesen: Ein leichtes Ziel für Hacker

16.10.2019 ‒ «Heime & Spitäler» ist das Fachmedium für Entscheidungsträger von Schweizer Heimen und Spitäler. In der aktuellen Ausgabe beschreibt Compass Security... Read more

Einbruch ins Netz - was tun?

26.09.2019 ‒ Das iX-Magazin macht in ihrer aktuellen Ausgabe die Netzwerksicherheit zum Titelthema. Wie es um die Sicherheit von Unternehmensnetzwerken steht,... Read more

First encrypt, then blackmail

24.09.2019 ‒ Cyber attacks on organizations can be categorized into four different groups. Ivan Bütler tells at Zürichsee-Zeitung what these are. Read more

So leicht wird dein Handy gehackt

12.09.2019 ‒ Die Blick-Reporterin weiss dank Ivan Bütler, warum man auch bei einer SMS von Mami kritisch sein soll. Read more

What does pentesting mean?

13.03.2019 ‒ Swiss Post has made its e-voting system available for a public hacker test. This procedure triggered numerous discussions. Radio SRF1 asks Cyrill... Read more

Companies hack themselves

8.03.2019 ‒ In its latest issue, the "Handelszeitung" focused on "Digital Innovation" and on topics such as cyber risks and penetration tests. Read more

Do not use the same passwort

5.03.2019 ‒ "What recommendations would you make to family offices regarding cyber security?" Opalesque's begins with this question - Cyrill Brunschwiler,... Read more

Ein Hacker mit einem moralischen Kompass

27.02.2019 ‒ Ivan Bütler ist Co-Gründer von Compass Security und heute noch aktiv in der Firma tätig. In der aktuellen Ausgabe des Fachmagazins "IT-Markt" erzählt... Read more

How secure is the E-Voting system?

21.02.2019 ‒ Tagesschau report of February 20, 2019 beginns with this words: "The sense, benefits and dangers of e-voting have long been the subject of... Read more

Fast and competent support in case of cyber incidients

7.12.2018 ‒ The editorial staff of the Unternehmerzeitung has taken up the topic of cyber security again and in an interview sheds light on how the cooperation... Read more

Wenn Veränderung Angst macht

2.05.2018 ‒ Cyrill Brunschwiler von Compass Security war als Referent am 11. KMU-Forum Obersee engagiert. Moderator Martin Diener stellte ihn als "netten Hacker"... Read more

CALENDAR

Security Training: Secure Mobile Apps

In the 2-day course (in German) from October 20/21, 2020, you will learn about the most important security problems of mobile apps. Read more

Security Training: Social Engineering

In the 2-day course (in German) from December 1/2, 2020, you will get to know and understand the methods, tools and tricks of social engineering. Read more

ALL DATES

Compass Security Blog

Yet Another Froala 0-Day XSS

Compass found a DOM-based cross-site scripting (XSS) in the Froala WYSIWYG HTML Editor. HTML code in the editor is not correctly sanitized when inserted into the DOM. This allows an attacker that can... mehr

Relaying NTLM authentication over RPC

Since a few years, we - as pentesters - (and probably bad guys as well) make use of NTLM relaying a lot for privilege escalation in Windows networks. In this article, we propose adding support for... mehr

ZUM BLOG