Category: germany

In an effort to enhance the security of critical infrastructures, a set of best-practice recommendations has been introduced to outline essential security requirements for suppliers of products and services. These recommendations aim to be a guiding document for agreements between operators of critical infrastructures and their suppliers, encompassing service providers and manufacturers. The document, developed…

Title: German Air Force Deploys Eurofighters to Train City Protection Published: Yesterday | Location: Hannover | Reading Time: 2 min In a groundbreaking move, the German Luftwaffe has temporarily stationed three Eurofighters from the Tactical Air Force Squadron 71 “Richthofen” at Hannover Airport for several days. Starting on Monday, November 27, these unarmed jets will…

An Incident Response Plan (IRP) is indispensable for every company to effectively respond to IT security incidents. Here are several reasons why implementing an IRP is crucial: 1. Early Detection and Responsiveness: 2. Coordinated Collaboration: 3. Contact Information and Reporting Channels: 4. Classification and Prioritization: 5. Reporting to External Entities: 6. Regular Training and Simulations:…

In a recent update, the Bundesamt für Sicherheit in der Informationstechnik (Federal Office for Information Security) has outlined a set of business continuity strategies (BC-Strategies) for organizations grappling with building or infrastructure failures. These strategies, based on the BSI Standard 200-4, aim to guide BC officers in identifying, examining, and evaluating solutions suitable for their…

German Chancellor Olaf Scholz inaugurated the production of hydrogen electrolyzers at the old Siemens Energy turbine plant, marking the beginning of “multi-gigawatt-scale” production. The initiative aligns with the German government’s strategy for a carbon-neutral and secure energy supply, aiming to have Siemens gas turbines running on 100% hydrogen by 2030. Siemens Energy, in collaboration with…

In response to the financial burdens caused by skyrocketing energy prices due to Russia’s aggression against Ukraine, the German government has introduced a comprehensive energy pricing package. The measures, spanning the next five years, include a significant reduction in electricity taxes for all manufacturing companies, dropping to the minimum allowed by the European Union. The…

F5 released two advisories addressing vulnerabilities in the configuration program of BIG-IP (all modules). The first vulnerability, CVE-2023-46747, allows remote attackers with access to the Traffic Management User Interface (TMUI) to execute arbitrary code with administrator privileges. It received a critical CVSS rating of 9.8. The second vulnerability, CVE-2023-46748, enables an authenticated attacker with TMUI…

In an era of expanding digitalization, Germany embraces new opportunities while acknowledging the associated risks. The Federal Office for Information Security (BSI) highlights these aspects in its “IT Security Situation in Germany 2023” report. Opportunities and Risks: Importance of Awareness: Key Findings: National Security Strategy: BSI’s Response: European Collaboration: BSI’s Role in Research and Development:…

In the wake of escalating conflicts in the Middle East and Eastern Europe, the European Union (EU) concluded a two-day summit in Brussels with a resolute stance on international crises and a focus on economic strategies. German Chancellor Scholz, speaking at the summit’s conclusion, emphasized the EU’s unequivocal condemnation of the recent terrorist attack by…

A recent study from Germany delves into the algorithmic intricacies of the Linux-RNG, emphasizing a key focus on estimating the entropy of raw data provided to the Linux-RNG by noise sources. The primary objective is to assess whether the Linux-RNG can swiftly deliver 100 bits of entropy early after a system boot, aligning with specified…

Chancellor Olaf Scholz envisions Germany as a sustainable and internationally competitive industrial nation with well-paid jobs, emphasizing the need for a transition to fossil-free production. Speaking at the 25th Congress of the IG Metall in Frankfurt, Chancellor Scholz outlined the goal of maintaining a robust industrial sector while achieving carbon neutrality. This ambitious objective necessitates…

In a technological leap, Germany’s Federal Office for Information Security (BSI) has spearheaded the implementation of digital seals, revolutionizing the security of official documents. This innovation, detailed in Technical Guideline BSI TR-03137-1, introduces a digitally signed two-dimensional barcode (DataMatrix) that ensures the authenticity and integrity of printed data on sovereign paper documents. The digital seal,…

Minister of State for Culture Claudia Roth has introduced the first federal funding program for popular music festivals. The Festival Funding Fund is specifically aimed at small and medium-sized music festivals. Large, already established festivals can also apply, provided they have special qualitative focuses. For the festival season 2024, organizers can receive up to 50,000…

In a groundbreaking announcement, the German Federal Office for Information Security (BSI) has shed light on HiSolutions’ comprehensive guide to achieving ISO 27001 certification based on IT-Grundschutz. This development is significant for individuals and organizations unfamiliar with the intricacies of cybersecurity certification. Understanding ISO 27001 Certification: ISO 27001 is an international standard for information security…

The Federal Office for Information Security (BSI) in Germany has just released a groundbreaking publication on Zero Trust, advocating a comprehensive security approach in response to the increased need for connectivity driven by remote work, cloud services, and BYOD concepts. Key Aspects of Zero Trust: The BSI emphasizes three crucial aspects of Zero Trust: Seven…

Protecting your company from cyber risks in a digitally interconnected world requires an understanding of cybersecurity risks associated with the supply chain. To manage these risks and enhance your company’s resilience, a comprehensive approach known as Cyber-Supply Chain Risk Management (C-SCRM) is essential. Supply Chain Risks Threaten… To establish effective Cyber-Supply Chain Risk Management, follow…

In today’s digital age, businesses rely heavily on modern information technology (IT) for crucial processes. However, the risk of unauthorized access to digital systems is a constant concern. To address this, Germany introduces the Cyber-Security Network (CSN), acting as the first point of contact for IT security incidents. The CSN provides effective assistance in handling…

Atlassian released an advisory regarding a critical vulnerability (CVE-2023-22515) in Confluence Data Center and Server. The vulnerability allows remote attackers to create unauthorized administrator accounts and gain access to Confluence instances. The vulnerability has received a CVSS rating of 10.0 (“critical”). According to Atlassian, the vulnerability may have already been actively exploited in some customer…

Germany has initiated a new funding program titled “Energy-reducing components” (EMK) aimed at promoting the integration of components that significantly and sustainably contribute to lowering CO2 emissions in the commercial vehicle fleet. Detailed information about the funding program is available on the official website under the section for funding programs dedicated to road freight transport.…

On September 27th, 2023, German State Secretary Joerg Kukies, G7/G20 Sherpa, and Economic Advisor of the Federal Chancellor, engaged in discussions with U.S. Deputy National Security Advisor for International Economics Mike Pyle, along with their respective delegations. The meeting addressed a spectrum of bilateral, regional, and global economic issues, as part of the ongoing U.S.-Germany…