Top Security QuickFails

QuickFails

6. June 2021

The prehistory

In recent years, we have conducted an extremely large number of penetration tests at companies of all sizes and in all industries (from small law firms with 3 employees, to power plants, to banks and insurance companies with several thousand employees). This blog series highlights a selection of attack vectors, at least one of which almost always resulted in the compromise of the entire domain, or at least severely compromised the organization’s information security.

Note: The list is by no means exhaustive, so this series is constantly (we try 🙂 ergängzt.

The QuickFails

Similar posts

QuickFails

Top Security QuickFails: #1 Office Macros

#1 Standard Office Macros Settings The attack Our employee of the month Peter Lustig receives [...]

6. June 2021

QuickFails

Top Security QuickFails: #2 Domain Admins Everywhere

#2 Domain admins everywhere The attack It is a Monday morning and Kevin Vielzutun starts his monthly server check in [...]

15. June 2021

QuickFails

Top Security QuickFails: #3 The “invisible” network shares

#3 The “invisible” network shares The attack It’s Wednesday morning, the sun is shining and all ImmerGrün AG employees are [...]

26. August 2021

QuickFails

Top Security QuickFails: #4 No SPF

Half past six in the morning in Germany. Bianca at MedienBude GmbH starts her workday by checking her e-mail inbox. There [...]

1. November 2021