Political

From a theoretical scenario to dangerous reality

ByStefan Karg 5. April 202411. April 2024

Since February 2022, cybersecurity threats to railways in the European Union have changed fundamentally: nation-state actors are no longer a theoretical possibility, but a dangerous reality.

Russia is trying to sabotage European railways, warns Prague

💡 We therefore need to increase the resilience of the railway system against attacks by very capable attackers with access to essentially unlimited resources, if the adversary state deems the attack important enough.

Rail security standards

ByStefan Karg 8. August 202410. August 2024

In this post, I delve into the most relevant standards that secure our railway systems. Using Europe and Germany as a case study for the local and national level of standards, the following infographics provides a comprehensive overview of the most relevant standards helping to increase security on the tracks. 📄 Download infographics as pdf:…

Security

Next conference: Nürnberg

ByStefan Karg 28. March 202411. April 2024

Today I’ve registered for attending the “CNA Forum Bahn+BahnTechnik 2024” conference with the title “Unlocking the opportunities of railtech” CNA Forum Bahntechnik | CNA – Center for transportation & logistics Neuer Adler e.V. (c-na.de) My personal focus for the conference will be the topics around the digitalisation of the railways and how to develop the…

Windows 3.11 in 2024? Here’s why.

ByStefan Karg 3. February 202411. April 2024

There is a job advert for a Windows 3.11 administrator role in the rail industry doing the rounds on the internet right now – e.g. here at Heise. It’s often accompanied by the question why such old systems are still in use – it’s 2024! Yes, this is the reality of OT systems – not…

Vulnerabilities

CVE-2024-3094: Why the xz-utils backdoor is more than a technical issue

ByStefan Karg 2. April 202411. April 2024

Despite the Easter holidays, a lot of incredible work was done over the weekend by many researchers analysing the details of the xz-utils backdoor. Some examples are: As the situation unfolds, it is becoming clear that this was not just one of the most sophisticated technical (perhaps the most sophisticated) attempts to introduce a backdoor…

Political

Open AI Sora Text-to-video

ByStefan Karg 19. February 202411. April 2024

The advances in text-to-video models are staggering. With several elections coming up this year and next, it gives a glimpse of the implications for media and social media and how easy it could be to produce very real looking fake news to influence political discussions.

Similar Posts