Risk management

USB sticks with ransomware – FIN7 hacker group uses hardware!

12. January 2022 by M.Sc. Chris Wojzechowski

Having USB sticks with ransomware in the real mailbox is an unusual, even if not unrealistic, scenario. In the past, many companies have prepared for this eventuality with various measures. A current case shows that even this threat scenario cannot yet be put ad-acta. The defense industry in the United … continue reading

Check dependencies on open source libraries!

11. January 2022 by M.Sc. Chris Wojzechowski

With a high number of dependencies on open source libraries, unwanted problems can occur. As a recent incident shows, these do not have to be of technical origin, but can have human motives. The open-source faker.js and colors.js libraries were intentionally tampered with by Marak Squires, the developer. Developers who … continue reading

Budget in IT security!

5. January 20224. January 2022 by Christian Höfig

Every company has a budget that is dedicated to IT. Consequently, some of that should go toward maintaining the company’s cybersecurity. This can take on very different dimensions. A budget for IT security! Within a company you have different budgets for certain areas. For example, every company has a budget … continue reading

Phish Scale – A new way of weighting phishing emails!

5. January 202224. September 2020 by M.Sc. Jan Hörnemann

Phishing is the most common attack vector currently used by hackers. Phishing refers to the sending of e-mails that are intended to intercept sensitive information. For this purpose, these e-mails are disguised as if they come from a trusted person. Since phishing is a well-known problem, many companies train their employees with phishing campaigns. A US institute has now created a new form of evaluation, the so-called Phish Scale, which is intended to help to better understand the results of such phishing campaigns.

Protective measures in the year of the hackers – methods for your own protection!

5. January 20227. September 2020 by M.Sc. Jan Hörnemann

2020 is a very exciting year so far from the perspective of IT security. Due to the Corona pandemic, many employees had to work in the home office, or still do. This partial rapid step towards the “remote office” has created many security gaps that can be exploited by attackers. We have looked at various protective measures against hackers to make your systems more secure. We look at the step before the attack up to the reactive measures when an attack is in full swing.

Trust Model or the Zero Trust Model – How should IT security be provided?

5. January 20222. September 2020 by M.Sc. Jan Hörnemann

Due to the current effects of the COVID19 pandemic, many people are now thinking more about control. This partially awakened loss of control is not only in the health care system, but in many areas of society. This also includes IT systems, because especially the increasing home office creates new dangers that attackers can shamelessly exploit. In order to guarantee security we need models, and here there are two main opponents, the trust or zero trust model!

Cyber incidents are the business risk 2020!

5. January 202210. February 2020 by M.Sc. Chris Wojzechowski

The biggest business risk in 2020 worldwide is cyber incidents. This refers to cybercrime and IT failures. However, data protection violations and fines also fall under the risk, which was cited as a business risk by around 40% of the 2,718 respondents. Even business interruption including supply chain interruption thus … continue reading

Review 2019 – over 400 Cyber Security & Live Hacking Shows!

5. January 202215. January 2020 by M.Sc. Chris Wojzechowski

The 2019 review is characterized by numerous new employees, a move and above all, English and German-speaking Cyber Security & Live Hacking Shows dominated our daily business. With an unbelievable 400 presentations we broke the annual record and doubled the number compared to 2018. Numerous cooperations with and orders from … continue reading

RISKREX – Test our digital risk management platform

5. January 202215. January 2020 by Dr. Matteo Große-Kampmann

Modern crime is increasingly shifting to the Internet and hits companies of all sizes and industries with full force – a modern digital risk management tool helps to recognize the attack potential of your company at an early stage, to check suppliers and to close and reduce security gaps on … continue reading