Third times a charm… Or so they say. The OpenSource encryption library OpenSSL had its third “major” security vulnerability, which was fixed with a patch available as of November 1, 2022. As per CVE-2022-3786 and CVE-2022-3602 the security vulnerability constitute X.509 email address buffer overflows. 8 years ago it was Heartbleed. This security vulnerability was … More And another OpenSSL security vulnerability
In his regular show on Friday Oct 7, 2022**, German satirist and TV host, Jan Böhmermann, reported about Germany’s Cybersecurity council. The question only is, which one… Turns out we have two: One, which was inaugurated by Germany’s Ministry of Defence. This is a council made up of politicians from Bund and Länder (representatives from … More Germany’s Cybersecurity council(s) or Social Engineering goes organisations*
There is so much talk about cyberwar and advanced persistent threats. One can get really scared. However, if you look at the facts, you only have to follow the money. Or in other words answer the question, where can an attacker make the most bang for the buck. It is true that cyberwar has become … More Do we all WannaCry – or which threats should we expect?
Every year they’ll chase a different pig through the village, as we say in German. This year in IT security it is cybersecurity. Especially the United States have funded research on this topic and created frameworks as if there is no tomorrow. There are conferences brimming with enticing titles like “Meet the rock stars of … More What is cybersecurity? – Or are you fully buzzword compliant yet?
Advanced persistent threats (APTs) are the stealth undercurrent of the daily news on security attacks. IT breaches where data get stolen are so prominent that APTs are getting mentioned but overlooked. APTs are developed and initiated by organizations with an almost unlimited amount of resources. They have highly skilled and incredibly smart people. They have … More Advanced persistent threats – or the new cyberwarfare
Digital Business Transformation is “the” economic change process that every company is experiencing at the moment. It is constituted by 5 major technology trends: Internet of Things, aka 4thindustrial revolution Multi-connectivity Big Data Cybersecurity Cloud Computing The 4th industrial revolution describes the technology trend to connect sensors from industrial processes with regular IT, which goes together … More Secure Digital Business Transformation – What every Chief Security Officer (CSO) needs to know