Security

Document classification

ByStefan Karg 07.09.202225.08.2025

Do you classify your documents? Here’s what you should consider!

Security

Christmas season
ByStefan Karg 20.12.202225.08.2025

Christmas season is here again! Like you, your “favorite” cyber criminals are also waiting to get their presents. Here are my 3 free security tips for you to spoil their fun this Christmas season: Have a wonderful time with your beloved ones and stay secure!

Read More Christmas season
Cyber Resilience Act (CRA) | Uncategorized

CRA: Standardization projects
ByStefan Karg 01.12.202501.12.2025

Currently a lot of standardization projects regarding the CRA are on-going. These standardization projects aim to develop harmonized European standards for the fundamental cybersecurity requirements of the CRA and the requirements regarding vulnerability management (horizontal standards) as well as different product categories (vertical standards). You can find an overview over the currently active standardization projects…

Read More CRA: Standardization projects
AI

ISO 42001 Practitioner certification
ByStefan Karg 26.09.202516.12.2025

This month I’ve earned the ISO/IEC 42001:2023. Artificial intelligence management system practitioner certification of rigcert.education. As AI systems become widely integrated into the business world, securely managing them is increasingly critical. How can organizations ensure the reliability of AI outputs, protect company data from loss, and maintain system availability? These topics—and many others—are addressed by…

Read More ISO 42001 Practitioner certification
AI

AI Security
ByStefan Karg 20.02.202325.08.2025

What is the role of us security professionals when it comes to AI powered systems?

Read More AI Security
OT

New Publication: Automated Security Risk Management for trains
ByStefan Karg 21.07.202525.08.2025

Patric Birr and I published an article in SIGNAL+DRAHT, the leading international medium for control and safety technology plus communication and information technology in the railway sector. In the article we propose automating Security Risk Assessments by using digital twins. These allow attack trees to be derived automatically enabling a systematic analysis of potential attack…

Read More New Publication: Automated Security Risk Management for trains
AI

WormGPT and FraudGPT
ByStefan Karg 28.07.202325.08.2025

As with any new technology, the “other side” is trying to figure out how to use it to their advantage. The normal commercial versions of LLMs have barriers built in to prevent the creation of malware code or phishing mails, for example. If you remove these barriers, you get the output that we as security…

Read More WormGPT and FraudGPT

Similar Posts