Thought Leadership
Digital self-defense
Major events in 2024 bring joy to sports fans, but also cyber risks. The summer of sport was therefore not just a festival for fans, but also a playground for digital threats.
Microsoft Research Asia recently presented an artificial intelligence called VASA-1, which is able to generate highly realistic deepfake videos from a single photo and an audio clip.
Efficient security strategy
Even the strongest IT system is only as strong as its weakest security vulnerability.
Unfortunately, the number of such vulnerabilities is constantly increasing – in fact, it has more than tripled in the last ten years.
EU push
At a time when cyber threats are bigger and more sophisticated than ever, the European Union (EU) has taken an important step towards strengthening its digital defenses with the introduction of the Network and Information Security Directive (NIS2).
IDaaS-Plattform
Entrust announces the expansion of its portfolio: The Identity as a Service (IDaaS) platform will integrate identity verification and identity and access management into a single solution to combat deepfakes, phishing, account takeover attacks and other threats.
Study
A new study by Zscaler examines the current state of implementation of NIS 2. The results of a survey of 875 IT executives in Europe show a discrepancy between the confidence of European organizations to achieve compliance with the regulations and the understanding of the requirements.
Responsibility shifted
After Microsoft initially refrained from publicly commenting on the global IT security debacle on July 19, 2024, the Wall Street Journal published an accusation against the European Commission just a few days later: it was not CrowdStrike, but the EU itself that was primarily responsible for the world’s largest
Defined cybersecurity measures
The new version of the EU NIS Directive not only increases the minimum requirements for cyber security, it also affects significantly more companies than before.
What measures should companies take now?
The introduction of the Human Risk OS
Safety awareness and training are essential for a proactive safety culture.
With SoSafe’s fully integrated human risk management solution, safety managers can holistically identify, prioritize and effectively reduce human safety risks.
Comment
The digitalization of industry has made critical infrastructures a popular target for cyber attacks.
The potentially devastating damage to both companies and society makes the topic of cyber security increasingly relevant for legislators.
The Future of Cybersecurity
In today’s digital age, cybersecurity is a critical concern for businesses and individuals alike. As cyber threats grow increasingly sophisticated, traditional methods of threat detection and prevention are no longer sufficient.
Commentary
At the end of June, Google announced that its Chrome browser would no longer trust Entrust for issuing new TLS certificates. The provider explained its decision in this blog post.
GitHub, Gitlab and Bitbucket affected
Aqua Security, a provider in the field of Cloud Native Security, publishes a new study showing how secret data such as login credentials, API tokens, and passkeys from organizations can remain openly accessible for years in the Git-based infrastructure of most source code management systems (SCMs).
Commentary
Since the release of ChatGPT, cybersecurity experts have been wondering how to control the falsification of GenAI. They initially assumed a threat scenario, namely that the output of GenAI is already being distorted by data poisoning.
Increase in cases of fraud
According to the Flashpoint 2024 Global Threat Intelligence Report, hackers stole an almost unbelievable amount of information in 2023 alone: 17 billion pieces of personal data were compromised. This is four times more than in the previous year and affects millions of people.
