Security

Defense in Depth

ByStefan Karg 01.11.202225.08.2025

Food for thought on the public holiday in Germany: What is defense in depth and why should you consider it?

AI

AI in the rail sector
ByStefan Karg 08.06.202325.08.2025

We are already seeing real-world applications of artificial intelligence in the rail sector. Deutsche Bahn is using artificial intelligence to reduce delays on its network. My prediction: This is just the beginning of ML/AI applications in our sector. We will see machine learning and AI algorithms becoming more and more widespread in the coming years….

Read More AI in the rail sector
Vulnerabilities

2FA phishing
ByStefan Karg 01.08.202225.08.2025

A new hashtag#attack technique on the rise: 2FA phishing.Learn how it works: How do attackers try to get around multi-factor authentication? https://www.microsoft.com/en-us/security/blog/2022/07/12/from-cookie-theft-to-bec-attackers-use-aitm-phishing-sites-as-entry-point-to-further-financial-fraud

Read More 2FA phishing
Security

Üstra hacked
ByStefan Karg 04.04.202325.08.2025

Cybersecurity in public transport: The operator of Hannover’s public transport was hacked. According to the linked article, it seems to be a ransomware attack. Bus and railway operation are not affected, but different systems such as the displays at the stations or the ticketing platform for the new “Deutschlandticket”. https://www.csoonline.com/de/a/cyberattacke-auf-hannoversche-verkehrsbetriebe,3674537

Read More Üstra hacked
Security

Company ID cards on social media
ByStefan Karg 01.07.202225.08.2025

Be careful, what you post in your social media profile! Unfortunately, this is valuable input for a potential attacker. Especially the layout of the ID is interesting, in this case even with a valid ID… 🙁 In best case, the processes are designed in a way, that only this information will not lead to anything…

Read More Company ID cards on social media
AI

AI phishing
ByStefan Karg 09.01.202325.08.2025

Are the bad guys using AI? They might! AI tools like ChatGPT or DALL-E-2 are currently widely tested out on the internet – both for the good as well as for the bad. From my point of view, we are at the very beginning of an interesting development, which will unfold over the next couple…

Read More AI phishing
Cyber Resilience Act (CRA)

CRA: Key Takeaways from the EU Commission Webinar
ByStefan Karg 13.12.202513.12.2025

The Cyber Resilience Act (CRA) is a critical piece of legislation designed to enhance product cybersecurity across the EU. If you’re finding it challenging to navigate, you’re not alone – many organizations are seeking clarity on its implications. Last week, the EU Commission hosted an insightful webinar on the CRA, attracting over 2,500 participants from…

Read More CRA: Key Takeaways from the EU Commission Webinar

Similar Posts