usd AG Successfully Certified for DIN ISO/IEC 27001 and DIN EN ISO 9001

usd AG News, PCI Security Services, Security Consulting

For years we have been guiding our clients towards successful certifications – now we have switched roles to undergo these testing procedures ourselves. While we do not represent the image of the shoemaker who wears the worst shoes, it was still an intense experience to have our own information security and quality management systems put to the test by third …

#BeAware: Nothing is impossible

usd AG News, Security Consulting

It is widely known that attackers can manipulate USB memory sticks, computer mice or presenter sticks in order to compromise computers or entire systems. Not many people are aware, however, that this also works with charging cables. From the outside they look normal, but have been manipulated so that a computer will recognize them as an input device instead of …

Meet the Team: Security Consulting

usd AG News, Security Consulting

Photo: Katharina Imgram (on the right), Security Consultant, and Maximilian Müller, Senior Security Consultant Security has a thousand facets. Find your niche in IT Security. IT Security is the hype topic of our time. The job descriptions are manifold and often filled with hardly understandable buzzwords. In our interview series, veterans and novices of usd give insights into their work …

#BeAware: Tailgating and Piggybacking

usd AG News, Security Consulting

Tailgating, also known as Piggybacking, is no trendy new sport, although the name might suggest otherwise. The term refers to a security risk many companies are facing. Tailgating describes the attempt of an attacker to gain access to restricted areas in a company building by inconspicuously tagging along after authorized persons or groups. The attacker counts on people’s courtesy and …

#BeAware: Cookies

usd AG News, Security Consulting

On almost every website, banners and overlays point out that this specific website will save Cookies. But what exactly are Cookies? Cookies are text files created by the website/the browser that are saved locally on the computer. Since a file in this format cannot be used to execute code on its own, the file itself is harmless. However, Cookies are …

Learned. Shared. Connected. Newcomer @ CST – A Review

usd AG CST Academy, News, PCI Security Services, Security Consulting, usd HeroLab

In events especially tailored to students, trainees and young professionals CST Academy and usd AG brought together cybersecurity newcomers in June and July. During the usd Consulting Days in Cologne and Neu-Isenburg, students had the chance to have all their questions answered by experienced consultants – questions about careers in consulting, the everyday working life and how to get started. …

usd at Internet Security Days 2019

usd AG News, News, Security Consulting, Security Consulting

For the second time in a row, usd AG will send a speaker to the Internet Security Days. This year, Maximilian Müller, Senior Security Consultant at usd, will introduce the “Incident Response Tabletop Exercise” on the key stage. Müller will demonstrate how companies can use this method to test their current processes and emergency procedures. During an “Incident Response Tabletop …

#BeAware: Have I been pwned?

usd AG News, Security Consulting

Time and again we hear of security incidents where millions of data sets have been hacked and published, including account information, user names and passwords. Have you ever wondered if you might be affected? On https://haveibeenpwned.com you can check whether your email address has been affected by one of the known security incidents. The data base checks your email address …

#BeAware: Phishing Mails

usd AG News, Security Consulting

Phishing emails are still the main gateway for viruses, Trojans and other malware. They are also often used to gain access to the personal data of their recipients. A phishing email sent for the purpose of spreading malware can reach a computer in two ways: Either via compromised attachments or links designed to trick the recipient into visiting a compromised …

#BeAware: Handling of Passwords

usd AG News, Security Consulting

A prominent case from the news: About 4 weeks ago the public learned that Facebook has been storing passwords in plain text since 2012. In a blog post Facebook confirmed that millions of users were affected. Although the passwords stored in credentials databases were encrypted according to security standards, they were accessible in plain text on internal servers by about …