Security

Assetmanagement

ByStefan Karg 31.08.202225.08.2025

How well do you know your IT? Learn which questions to ask!

Security

Two-factor authentication
ByStefan Karg 10.02.202225.08.2025

Start to annoy hackers today by using two-factor authentication (2FA)! Setting up 2-Step Verification (2SV) – NCSC.GOV.UK

Read More Two-factor authentication
Conferences / Events

CNA Railway Technology Forum 2024
ByStefan Karg 17.04.202425.08.2025

Today I attended the CNA e.V. railway technology forum 2024 in Nuremberg for ICS GmbH. The title of the conference was “Unlocking the opportunities of railtech”, which is both necessary and possible with the help of digital systems such as ETCS, ATO and CTMS – if it’s done in the right way. Cybersecurity plays a vital role in…

Read More CNA Railway Technology Forum 2024
AI

ISO 42001 Practitioner certification
ByStefan Karg 26.09.202516.12.2025

This month I’ve earned the ISO/IEC 42001:2023. Artificial intelligence management system practitioner certification of rigcert.education. As AI systems become widely integrated into the business world, securely managing them is increasingly critical. How can organizations ensure the reliability of AI outputs, protect company data from loss, and maintain system availability? These topics—and many others—are addressed by…

Read More ISO 42001 Practitioner certification
Cyber Resilience Act (CRA)

CRA FAQ
ByStefan Karg 04.12.202504.12.2025

The EU Commission services have just released a comprehensive FAQ to help to demystify the implementation of the Cyber Resilience Act. If the official text left you scratching your head, this 66-page document might be your go-to resource for first practical answers to your questions. Worth a bookmark. Read it here:EU Commission – CRA Implementation

Read More CRA FAQ
Security

Company ID cards on social media
ByStefan Karg 01.07.202225.08.2025

Be careful, what you post in your social media profile! Unfortunately, this is valuable input for a potential attacker. Especially the layout of the ID is interesting, in this case even with a valid ID… 🙁 In best case, the processes are designed in a way, that only this information will not lead to anything…

Read More Company ID cards on social media
OT

New Publication: Automated Security Risk Management for trains
ByStefan Karg 21.07.202525.08.2025

Patric Birr and I published an article in SIGNAL+DRAHT, the leading international medium for control and safety technology plus communication and information technology in the railway sector. In the article we propose automating Security Risk Assessments by using digital twins. These allow attack trees to be derived automatically enabling a systematic analysis of potential attack…

Read More New Publication: Automated Security Risk Management for trains

Similar Posts