oNEKEY -RESsourcen

Greifen Sie auf die neuesten Whitepapers, Datenblätter, Forschungsergebnisse und Sicherheitsempfehlungen zu Cybersicherheit und Compliance zu — alles an einem Ort.
(teilweise nur in Englisch verfügbar)

Ausgewählte ReSsourcen

ESCAR Europe 2024: DIE WELTWEIT FÜHRENDE KONFERENZ FÜR CYBERSICHERHEIT IN DER AUTOMOBILINDUSTRIE!
Events
Nov 1, 2024
3
min. Lesezeit

ESCAR Europe 2024: DIE WELTWEIT FÜHRENDE KONFERENZ FÜR CYBERSICHERHEIT IN DER AUTOMOBILINDUSTRIE!

ONEKEY auf der escar — der weltweit führenden Automobil-Cybersicherheitskonferenz 2024 — Erhöhen Sie Ihre Cybersicherheit in der Automobilindustrie!

Mehr lesen
Swisscom
Success Stories
Nov 6, 2024
5
min. Lesezeit

Swisscom

Wie Swisscom durch automatische Firmware-Analyse 400.000 USD pro vermiedenem IOT-Sicherheitsvorfall einspart

Mehr lesen
Security Advisory: Unauthenticated Command Injection in Mitel IP Phones
Research
Nov 17, 2024
15
min. Lesezeit

Security Advisory: Unauthenticated Command Injection in Mitel IP Phones

Discover critical vulnerabilities in Mitel SIP phones that allow unauthenticated command injection. Learn how outdated input parsing can expose your devices and why it's essential to scan firmware for security risks. Protect your network with our in-depth analysis and expert takeaways.

Denys Vozniuk
Denys Vozniuk
Security Consultant
Mehr lesen
What is a SBOM and why is it important for cybersecurity?
Blog
Jan 8, 2023
4
min. Lesezeit

What is a SBOM and why is it important for cybersecurity?

Learn about the benefits of a SBOM for cybersecurity and how it can improve the security and quality of your products. Read the Latest Blog Post Now!"

Sara Fortmann
Sara Fortmann
Senior Marketing Manager
Mehr lesen
Understanding the EU Cyber Resilience Act and achieve product cybersecurity compliance with ONEKEY’s whitepaper
Blog
Feb 6, 2023
3
min. Lesezeit

Understanding the EU Cyber Resilience Act and achieve product cybersecurity compliance with ONEKEY’s whitepaper

ONEKEY Whitepaper: Enhance EU CRA compliance. Streamline supply chain risk management & automate compliance controls for secure device market. Download now!

Sara Fortmann
Sara Fortmann
Senior Marketing Manager
Mehr lesen
Reducing Common Vulnerabilities and Exposures (CVEs) in Software Development
Blog
Jan 15, 2023
8
min. Lesezeit

Reducing Common Vulnerabilities and Exposures (CVEs) in Software Development

Stay informed & stay protected with our blog on the EU Cyber Resilience Act. Learn what the new regulation means for your business & how to stay compliant.

Sara Fortmann
Sara Fortmann
Senior Marketing Manager
Mehr lesen
Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X
Research
May 26, 2024
5
min. Lesezeit

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

Explore ONEKEY Research Lab's security advisory detailing a critical vulnerability in the TP-Link Archer C5400X router. Learn about the risks and recommended actions.

Mehr lesen
Security Advisory: Remote Code Execution in Ligowave Devices
Research
May 13, 2024
3
min. Lesezeit

Security Advisory: Remote Code Execution in Ligowave Devices

Explore the security advisory detailing remote code execution vulnerabilities in Ligowave devices. Learn about the risks & recommended protections.

Mehr lesen
The X in XFTP Stands For eXecute
Research
Jul 8, 2024
6
min. Lesezeit

The X in XFTP Stands For eXecute

Find out how our platform enhances firmware security by identifying vulnerabilities & bugs in ICT products, ensuring compliance with DORA & NIS2 directive.

Mehr lesen
ONEKEY 360° Comprehensive Product Cybersecurity & Compliance
Whitepapers
Sep 1, 2024
15
min. Lesezeit

ONEKEY 360° Comprehensive Product Cybersecurity & Compliance

This whitepaper targets, Head of Product Cybersecurity, Product Owner, Compliance Professionals and Head of Devel- opment of manufacturers of connected devices.

Mehr lesen
TACKLING SOFTWARE SUPPLY CHAIN RISKS WITH IEC 62443 AND SBOM
Whitepapers
Nov 1, 2023
15
min. Lesezeit

TACKLING SOFTWARE SUPPLY CHAIN RISKS WITH IEC 62443 AND SBOM

This whitepaper targets security teams of industrial automation and control systems (IACS) asset owners and product suppliers.

Mehr lesen
Bisherige
Weiter

Alle ReSsourcen

Danke! Deine Einreichung ist eingegangen!
Hoppla! Beim Absenden des Formulars ist etwas schief gelaufen.
Advisory: Cisco Small Business RV Series Routers Web Filter Database Update Command Injection Vulnerability
Research
Aug 8, 2022
5
min. Lesezeit

Advisory: Cisco Small Business RV Series Routers Web Filter Database Update Command Injection Vulnerability

The advisory describes a vulnerability ONEKEY identified when hunting for bugs to craft exploit chains for PWN2OWN 2021. Read advisory!

Mehr lesen
Advisory: FESTO: CECC-X-M1 - Command Injection Vulnerabilities
Research
Jul 6, 2022
5
min. Lesezeit

Advisory: FESTO: CECC-X-M1 - Command Injection Vulnerabilities

To evaluate and strengthen the automated vulnerability detection capabilities of ONEKEY, we frequently download and analyze firmware images from a variety of vendors. This is how we stumbled upon the CECC-X-M1 product line, an industrial controller manufactured by FESTO.

Mehr lesen
Whitepaper: Sourcing Secure IoT Devices
Blog
Mar 15, 2022
1
min. Lesezeit

Whitepaper: Sourcing Secure IoT Devices

Find out what to consider when purchasing new IoT products to avoid compromising the security of your IT infrastructure.

Mehr lesen
Advisory: Western Digital My Cloud Pro Series PR4100 RCE
Research
Feb 14, 2022
7
min. Lesezeit

Advisory: Western Digital My Cloud Pro Series PR4100 RCE

The IoT Inspector Research Lab uncovered a command injection vulnerability on Western Digital My Cloud Pro Series PR4100.

Mehr lesen
Top 6 IoT security myths – busted
Blog
Feb 7, 2022
4
min. Lesezeit

Top 6 IoT security myths – busted

You think that IoT security is too expensive? Or that your company is not at risk? We debunk the most common misconceptions about IoT security!

Mehr lesen
How-To: Extracting Decryption Keys for D-Link
Research
Nov 24, 2021
8
min. Lesezeit

How-To: Extracting Decryption Keys for D-Link

Find out how the IoT Inspector Research Lab extracted an encryption key for a subset of D-Link routers - in particular the D-Link DIR-X1560.

Mehr lesen
Pwn2Own: IoT Inspector Research Lab uncovers vulnerabilities in Cisco router
Blog
Nov 10, 2021
1
min. Lesezeit

Pwn2Own: IoT Inspector Research Lab uncovers vulnerabilities in Cisco router

The IoT Inspector Research Lab successfully identified three previously unknown vulnerabilities in the Cisco RV340 router at Pwn2Own 2021.

Mehr lesen
IoT Inspector Industry News Q3 2021
Blog
Oct 12, 2021
2
min. Lesezeit

IoT Inspector Industry News Q3 2021

IoT News Q3: Discover our latest advisory, our new pricing, and dig deeper into the topic of supply chain security.

Mehr lesen
Advisory: Cisco ATA19X Privilege Escalation and RCE
Research
Oct 6, 2021
5
min. Lesezeit

Advisory: Cisco ATA19X Privilege Escalation and RCE

We found lacking user privilege separation enforcement and post-authentication command injection remote code execution within Cisco ATA19X firmware.

Mehr lesen
Hoppla!
Kein Ergebnis gefunden
Bitte versuche es mit einer anderen Kategorie.

Bereit zur automatisierung ihrer Cybersicherheit & Compliance?

Machen Sie Cybersicherheit und Compliance mit ONEKEY effizient und effektiv.

Eine Demo buchen

Über Onekey

EIN SCHLÜSSEL ist der führende europäische Spezialist für Product Cybersecurity & Compliance Management und Teil des Anlageportfolios von PricewaterhouseCoopers Deutschland (PwC). Die einzigartige Kombination aus einer automatisierten Product Cybersecurity & Compliance Platform (PCCP) mit Expertenwissen und Beratungsdiensten bietet schnelle und umfassende Analyse-, Support- und Verwaltungsfunktionen zur Verbesserung der Produktsicherheit und -konformität — vom Kauf über das Design, die Entwicklung, die Produktion bis hin zum Ende des Produktlebenszyklus.

onekey team

KONTAKT:
Sarah Fortmann
Leiter Marketing
sara.fortmann@onekey.com

euromarcom public relations GmbH
+49 611 973 150
team@euromarcom.de