Attack on GSM-R

ByStefan Karg 10.10.202225.08.2025

Cables for GSM-R were intentionally cut this morning in northern Germany. This is a very serious incident and has to be carefully investigated with regard to the motivation of the attackers.

Link to article of German newspaper “Die Zeit” (08.10.2022)

Conferences / Events

VDEI Security Conference
ByStefan Karg 23.11.202225.08.2025

Getting ready for my talk at Verband Deutscher Eisenbahn-Ingenieure e.V. (VDEI) Fachtagung Cybersecurity 2022. I’ll be speaking about Security for Safety and will be sharing a couple of lessons learned and best practices from real world projects at ICS – Informatik Consulting Systems.

Read More VDEI Security Conference
Security

Attack via public links
ByStefan Karg 10.08.202225.08.2025

This is actually a very interesting attack vector described in this post:As an attacker place a Google Ad for a keyword, which will be mapped to accidentally pasted unprotected Dropbox links (I’m sure, this will also work with other cloud providers) and see what you will get… LinkedIn Post

Read More Attack via public links
Vulnerabilities

CVE-2024-3094: Why the xz-utils backdoor is more than a technical issue
ByStefan Karg 02.04.202425.08.2025

Despite the Easter holidays, a lot of incredible work was done over the weekend by many researchers analysing the details of the xz-utils backdoor. Some examples are: As the situation unfolds, it is becoming clear that this was not just one of the most sophisticated technical (perhaps the most sophisticated) attempts to introduce a backdoor…

Read More CVE-2024-3094: Why the xz-utils backdoor is more than a technical issue
OT | Security | Standardization

IEC 62443-3-2 Risk Assessment Workflow
ByStefan Karg 01.02.202525.08.2025

Critical infrastructure faces a growing number of security threats.. Critical infrastructure typically relies on Industrial Automation and Control Systems (IACS) and other non-IT components, often referred to as “Operational Technology.” To effectively assess cybersecurity risks within operational technology (OT) systems, adhering to the internationally recognized IEC 62443 standard is best practice. IEC 62443-3-2, part of…

Read More IEC 62443-3-2 Risk Assessment Workflow
Security

Next conference: Nürnberg
ByStefan Karg 28.03.202425.08.2025

Today I’ve registered for attending the “CNA Forum Bahn+BahnTechnik 2024” conference with the title “Unlocking the opportunities of railtech” CNA Forum Bahntechnik | CNA – Center for transportation & logistics Neuer Adler e.V. (c-na.de) My personal focus for the conference will be the topics around the digitalisation of the railways and how to develop the…

Read More Next conference: Nürnberg
Political

Open AI Sora Text-to-video
ByStefan Karg 19.02.202425.08.2025

The advances in text-to-video models are staggering. With several elections coming up this year and next, it gives a glimpse of the implications for media and social media and how easy it could be to produce very real looking fake news to influence political discussions.

Read More Open AI Sora Text-to-video

Similar Posts