Cybersecurity Awareness
- - - Live Hacking Event
    - Experience how attackers proceed, attack companies and steal data. We show you realistically how a cyber attack works. Entertaining, individual and exciting.
- - - Managed Phishing Simulation
    - We carry out individual or continuous phishing simulations together with you. Automatic, event-driven or recurring – we adapt to your wishes and requirements.
Offensive Security
- - - Penetration test
    - We attack systems within the scope of application in an organized and systematic manner and inform you immediately about high and critical security gaps. We then support you in eliminating the security gaps.
- - - Vulnerability scan
    - We use established tools to quickly and efficiently find out which systems are vulnerable, either internally or externally. We filter and check the results and support you in remedying them.
- - - 360° SME analysis
    - For small and medium-sized companies, we offer a cost-effective package that gives you an overview of the vulnerability of your internal and external infrastructure.
Consulting
- - - ISMS Consulting
    - We support you in setting up and expanding your information security management system (ISMS) and, if required, help you to achieve ISO 27001 certification.
- - - External (Chief) Information Security Officer
    - By appointing an information security officer, you fulfill requirements, have a single point of contact and are able to implement measures professionally and appropriately.
Ressources
- - - Blog
    - Read our free IT security blog and find out about news, vulnerabilities and threats.
  - - Success stories
    - Find out more about the projects we have completed for a wide range of clients.
- - - Media package
    - Whether logo, colors or images. Download our materials now free of charge to promote your event.

Awareness / Uncategorized

New Emotet campaign works with links on websites!

06/06/2024

New Emotet campaign works with links on websites!

Newly, numerous CERTs, companies and organizations are recording a new emotet campaign that work with links to websites and download malware there. The consequences are encrypted data and horrendous ransom demands. Prevention is still the best protection.

Company networks are covered by the new Emotet campaign.

It is the nightmare for every company: When nothing works anymore because the IT has failed. Emotet is characterized by working with so-called dynamite phishing mails. We had already described this special type in an earlier blog post. However, the way it works is effective and requires increased attention in everyday life, not clicking on the appropriate links.

In the past, the Berlin Supreme Court has been the victim of the sophisticated malware. In the middle of October it was confirmed that the emergency operation at the court will last until 2020. Computers are currently used exclusively from typewriters. The head of the court admitted that the own IT was not so “trimmed” to withstand the attacks from the outside. The new installation of virus protection is now an obligatory measure, but only part of the solution.

For a high level of IT security, the human being is a decisive factor.

Emails that flutter into the mailbox on behalf of colleagues and friends are less sceptical. Being skeptical all day is also not a recommended setting. The attack vectors of the criminals change however only rarely. This knowledge enables every user to reliably assess their own risk, recognize phishing mails and report them accordingly.

A reworked Emotet Campaign also finds its place in our Live Hacking Shows. How are e-mails sent, received and above all: How can Emotet e-mails be reliably recognized? To all these questions we give answers and further tips and tricks to avoid damage by Emotet.

Chris Wojzechowski

Mein Name ist Chris Wojzechowski und ich habe vor wenigen Jahren meinen Master in Internet-Sicherheit in Gelsenkirchen studiert. Ich bin geschäftsführender Gesellschafter der AWARE7 GmbH und ausgebildeter IT-Risk Manager, IT-Grundschutz Praktiker (TÜV) und besitze die Prüfverfahrenskompetenz für § 8a BSIG. Unser Brot und Buttergeschäft ist die Durchführung von Penetrationstests. Wir setzen uns darüber hinaus für ein breites Verständnis für IT-Sicherheit in Europa ein und bieten aus diesem Grund den Großteil unserer Produkte kostenfrei an.

AWARE7 GmbH

Munscheidstr. 14
45886 Gelsenkirchen

Tel. +49 (0) 209 - 8830 6760

Fax. +49 (0) 209 - 8830 6769

Mail info@aware7.de

Opening hours
Monday - Friday
8:00 - 17:00

COMPANY

Code of Conduct

AWARENESS

Live Hacking Show

Managed Phishing Simulation

RESOURCES

IT-Security Blog

Success Stories

OFFENSIVE SERVICES

Penetration test

Vulnerability scan

IT security emergency

360° SME analysis

CONTACT

Call for proposal (CfP)

CONSULTING

ISMS consulting

External information security officer

Imprint Privacy policy