Security for Safety pitch at it-sa 2021

ByStefan Karg 19.10.202125.08.2025

A short excerpt from my pitch on ‘Security for Safety’ as part of the BW-International Session at it-sa 2021 is available here:

Post | LinkedIn

Security

Real world phishing attacks
ByStefan Karg 25.01.202325.08.2025

This post is a great example, that a spear phishing attack also works in the offline world. It does not always have to be an e-mail! Thank you to Marc Torke for sharing this. The letter in the picture is claiming to come from an official German court and was sent to a newly founded…

Read More Real world phishing attacks
Conferences / Events

InnoTrans 2022: Done!
ByStefan Karg 23.09.202225.08.2025

For me, yesterday was the last day of InnoTrans for this year. Now I have to rest my feet (of course in our red socks!). During this week, I’ve walked countless miles, talked to incredibly interesting people and once again experienced the wide range of products and services necessary to make our railway system work….

Read More InnoTrans 2022: Done!
AI

AI Security
ByStefan Karg 20.02.202325.08.2025

What is the role of us security professionals when it comes to AI powered systems?

Read More AI Security
Conferences / Events

Google I/O 2022
ByStefan Karg 04.05.202225.08.2025

Just registered for Google I/O 2022 (remote). Looking forward to get new ideas and insights into the latest tends of AI/Machine learning, cloud computing and security.

Read More Google I/O 2022
Vulnerabilities

CVE-2024-3094: Why the xz-utils backdoor is more than a technical issue
ByStefan Karg 02.04.202425.08.2025

Despite the Easter holidays, a lot of incredible work was done over the weekend by many researchers analysing the details of the xz-utils backdoor. Some examples are: As the situation unfolds, it is becoming clear that this was not just one of the most sophisticated technical (perhaps the most sophisticated) attempts to introduce a backdoor…

Read More CVE-2024-3094: Why the xz-utils backdoor is more than a technical issue
OT | Security | Standardization

IEC 62443-3-2 Risk Assessment Workflow
ByStefan Karg 01.02.202525.08.2025

Critical infrastructure faces a growing number of security threats.. Critical infrastructure typically relies on Industrial Automation and Control Systems (IACS) and other non-IT components, often referred to as “Operational Technology.” To effectively assess cybersecurity risks within operational technology (OT) systems, adhering to the internationally recognized IEC 62443 standard is best practice. IEC 62443-3-2, part of…

Read More IEC 62443-3-2 Risk Assessment Workflow

Similar Posts