Despite the Easter holidays, a lot of incredible work was done over the weekend by many researchers analysing the details of the xz-utils backdoor. Some examples are: As the situation unfolds, it is becoming clear that this was not just one of the most sophisticated technical (perhaps the most sophisticated) attempts to introduce a backdoor…
Frank Karlitschek, the founder and CEO of Nextcloud, gave an inspiring talk at 2025 re:publica conference in Berlin about how to establish a sustainable, enterprise-ready open-source project. π Link [DE]: re:publica 25: Frank Karlitschek – So baut man ein nachhaltiges Open Source Unternehmen In his talk he highlights the factors making an open-source project successful….
Railway safety is a critical aspect of transportation that ensures the protection of passengers, staff, and infrastructure. Adhering to established safety norms is essential for minimizing risks and enhancing the reliability of railway systems. This blog post will explore key European railway safety standards EN 50126, EN 50128, and EN 50129. Safety measures are essential…
The newly discovered xz-utils backdoor, which was published yesterday (NVD – CVE-2024-3094 (nist.gov)) also affects one of the Linux distributions most used by penetration testers: Kali Linux. βMake sure, that you are updating your Kali installations as fast as possible, especially when you updated them before in the time frame between 26.03.2024 and 29.03.2024. π‘For…
Today and tomorrow is the “day of rail” in Germany – a perfect opportunity for me to say “Thank you!” to all the many people involved in keeping the wheels of our trains turning and to improve the system “railway” everyday a little bit. This is a very valuable contribution to the mobility in our…
Food for thought on the public holiday in Germany: What is defense in depth and why should you consider it?