Security

IT/IoT attacks in 2022

ByStefan Karg 26.01.202225.08.2025

OT / IoT attacks and supply chain attacks are considered as 2 of the 10 most “hot trends” in cybersecurity 2022.

6 hot cybersecurity trends — and 2 going cold | CSO Online

AI

Bing AI message limitation
ByStefan Karg 17.02.202325.08.2025

There was an interesting article published about Bing’s AI chat bot using a LLM (Large Language Model) this weekend in the New York Times. A clear recommendation for reading:Why a Conversation With Bing’s Chatbot Left Me Deeply Unsettled – The New York Times

Read More Bing AI message limitation
Rail technology | Security

How railway cyber security works in a nutshell
ByStefan Karg 10.08.202325.08.2025

Step 1: Plan Security Management: This is the first step in the process, indicating the importance of planning and managing security measures effectively. Step 2: Security Risk Analysis (IEC 62443-3-2): The second step involves conducting a security risk analysis in accordance with the IEC 62443-3-2 standard. This step is crucial for identifying potential security risks…

Read More How railway cyber security works in a nutshell
Cyber Resilience Act (CRA)

EU Commission Releases CRA FAQ in Markdown Format
ByStefan Karg 20.02.202620.02.2026

The European Commission has published the Cyber Resilience Act (CRA) FAQ as a Markdown file. This format is particularly valuable for: The Markdown version of the CRA FAQ is available for download here: Cyber Resilience Act implementation – Frequently asked questions

Read More EU Commission Releases CRA FAQ in Markdown Format
Security

USB Killer redefined
ByStefan Karg 30.03.202325.08.2025

A Military-Type Explosive Sent Via USB Drive (gbhackers.com) ⚡ So far, USB-Killer devices were used by attackers (or pentesters) to disable or destroy devices with USB interfaces by discharging a high power electrical shock into the data lines of the USB port. ❗ If you find a USB stick somewhere: Do not plug it into…

Read More USB Killer redefined
Cyber Resilience Act (CRA)

Article 14 strikes first: The september 2026 CRA Reporting Deadline
ByStefan Karg 31.03.202631.03.2026

Most CRA conversations I have right now orbit around December 2027. That’s the wrong date to focus on first. Article 14 of the CRA – the reporting obligation for actively exploited vulnerabilities and severe incidents – applies from 11.09.2026. That’s roughly 5 months from now. And 15 months before the rest of the regulation kicks…

Read More Article 14 strikes first: The september 2026 CRA Reporting Deadline
Security

DDoS attacks
ByStefan Karg 03.02.202325.08.2025

The German Federal Office for Information Security (BSI) informs about a wave of DDoS attacks against websites of mainly airports as well as from the financial sector and the government, which happened last week. Post of BSI on LinkedIn

Read More DDoS attacks

Similar Posts