Our understanding

Compass stands for trust, competence, and customer orientation.

Trust

Creating a relationship of trust is our primary goal in working together with our customers. We emphasize personal and transparent communications, firm commitments and absolute confidentiality. Our reputation is built on authenticity and demonstrated through competence.

Competence

We put our in-depth expertise to the test on customer projects every day and are always ready to accept new challenges. Based on a combination of broad experience from our everyday activities, our employees' continuous training, and thirst for new research possibilities, we keep pace with the latest technologies and trends, and continuously adapt our knowledge base and methodology.

Customer orientation

Our personal contact with customers helps us understand the exact requirements, we can give them the project support they expect and react flexibly to any sudden changes in the company environment.

At all times, be it during a kick-off meeting, during the actual security assessment, or in the documentation and debriefing phase, we make a special point of communicating appropriately to whatever interest group we are addressing.


CALENDAR

Beer-Talk #18 in Berlin: How to pwn a Global Player in two days

Thanks to greater financial and personal resources, large companies are better equipped against hacking attacks than smaller companies and startups.... Read more

Beer-Talk #27 in Zurich: WiFi Open to WPA3

WiFi is omnipresent, but the networks often have weaknesses. Does the WPA3 standard provide additional defenses? We will show you whether the WiFi... Read more

5. Digital Real Estate Summit 2019

The place to meet the digital real estate industry. Read more

ALL DATES

NEWS

Vulnerability in mod_auth_openidc module

Mischa Bachmann has identified a reflected cross site scripting (XSS) vulnerability in the mod_auth_openidc module for the Apache 2.x HTTP server. Read more

Compass Security supervises scientific work

Compass Security volunteers as supervisor for academic work and studies relating to information security. Read more

Vulnerability in the Siemens SICAM A8000 Series web interface

Emanuel Duss and Nicolas Heiniger have identified an XXE vulnerability in the web interface of the Siemens SICAM A8000 Series. Read more

ARCHIVES

Compass Security Blog

XSS worm – A creative use of web application vulnerability

In my free time, I like to do some bug bounty hunting. For some reasons, I’ve been doing this almost exclusively for Swisscom. One of the reason is that the scope is very broad and I like to have this... mehr

Substitutable Message Service

Have you ever said something and later regretted it? Or written an email to someone and then wished it had not happened? Or sent an SMS message but afterward desired to change its content? Well,... mehr

ZUM BLOG