Security

CIA Triad

ByStefan Karg 29.07.202225.08.2025

This week: Learn about the three fundamentals of security:

🔒confidentiality, 🏡 integrity and 🟢 availability

Vulnerabilities

CVE-2024-3094: xz-utils backdoor
ByStefan Karg 30.03.202425.08.2025

The newly discovered xz-utils backdoor, which was published yesterday (NVD – CVE-2024-3094 (nist.gov)) also affects one of the Linux distributions most used by penetration testers: Kali Linux. ❗Make sure, that you are updating your Kali installations as fast as possible, especially when you updated them before in the time frame between 26.03.2024 and 29.03.2024. 💡For…

Read More CVE-2024-3094: xz-utils backdoor
AI

BSI AI Guideline
ByStefan Karg 12.04.202325.08.2025

What a good start into the weekend 😎 📄 The German BSI has published a guideline for developers regarding potential vulnerabilies in AI systems. 📣 From my point of view, a security risk assessment on systems using AI technologies has to consider the attacks on the AI parts of the system as well. A security…

Read More BSI AI Guideline
Political | Security | Standardization

BSI & TÜV: Worrying Survey on Cybersecurity Among German Companies
ByStefan Karg 12.06.202512.06.2025

The German BSI (Federal Office for Information Security) and TÜV-Verband conducted a survey among German companies to assess the status of cybersecurity in the private sector. Some worrying results from my point of view are: 🌐 Link to the study: BSI – Presse – TÜV-Studie zur Cybersicherheit der deutschen Wirtschaft: Bedrohungslage steigt, Unternehmen wiegen sich…

Read More BSI & TÜV: Worrying Survey on Cybersecurity Among German Companies
Standardization

DKE
ByStefan Karg 15.09.202325.08.2025

This morning I’m on the way to Frankfurt for ICS – Informatik Consulting Systems participating at a DKE security working group meeting regarding standardisation of railway security.

Read More DKE
Security

Document classification
ByStefan Karg 07.09.202225.08.2025

Do you classify your documents? Here’s what you should consider!

Read More Document classification
Security

DDoS attacks
ByStefan Karg 03.02.202325.08.2025

The German Federal Office for Information Security (BSI) informs about a wave of DDoS attacks against websites of mainly airports as well as from the financial sector and the government, which happened last week. Post of BSI on LinkedIn

Read More DDoS attacks

Similar Posts