Security

DDoS attacks

ByStefan Karg 03.02.202325.08.2025

The German Federal Office for Information Security (BSI) informs about a wave of DDoS attacks against websites of mainly airports as well as from the financial sector and the government, which happened last week.

Post of BSI on LinkedIn

Cyber Resilience Act (CRA)

CRA Compliance Deadline: Why Your Customers Won’t Wait Until December 2027
ByStefan Karg 25.03.202625.03.2026

Most manufacturers plan their CRA compliance around one date: 11 December 2027. That’s when the Cyber Resilience Act fully applies, and that’s the CRA compliance deadline their project plans are built around. From a regulatory perspective, this makes sense. From a business perspective, it’s already too late. The regulatory date is not the market date…

Read More CRA Compliance Deadline: Why Your Customers Won’t Wait Until December 2027
AI

BSI AI Guideline
ByStefan Karg 12.04.202325.08.2025

What a good start into the weekend 😎 📄 The German BSI has published a guideline for developers regarding potential vulnerabilies in AI systems. 📣 From my point of view, a security risk assessment on systems using AI technologies has to consider the attacks on the AI parts of the system as well. A security…

Read More BSI AI Guideline
OT

Windows 3.11 in 2024? Here’s why.
ByStefan Karg 03.02.202425.08.2025

There is a job advert for a Windows 3.11 administrator role in the rail industry doing the rounds on the internet right now – e.g. here at Heise. It’s often accompanied by the question why such old systems are still in use – it’s 2024! Yes, this is the reality of OT systems – not…

Read More Windows 3.11 in 2024? Here’s why.
Security

Password security
ByStefan Karg 10.03.202225.08.2025

What’s the state of your password security? Do you consider the length and complexity and don’t use the same password for multiple services? Post | LinkedIn

Read More Password security
Security

Real world phishing attacks
ByStefan Karg 25.01.202325.08.2025

This post is a great example, that a spear phishing attack also works in the offline world. It does not always have to be an e-mail! Thank you to Marc Torke for sharing this. The letter in the picture is claiming to come from an official German court and was sent to a newly founded…

Read More Real world phishing attacks
OT

OT security testing
ByStefan Karg 21.07.202225.08.2025

This was my start into the new week this morning! 🌞🚴 This week I’m at one of our customers laboratories. Certain tests with OT components require physical presence and can’t be done remotely – which is a difference to a lot of IT environments.

Read More OT security testing

Similar Posts