AI-powered attacks will fundamentally transform Germany’s cybersecurity landscape, while the country is already a top target for ransomware operations.
The Cisco vulnerability CVE-2026-20230 (CVSS 8.6) is being actively exploited weeks after patch release in June and enables root access through SSRF and file operations.
Ransomware attacks are surging massively and hitting Germany particularly hard; the SafePay group is responsible for approximately one quarter of them.
The Mistic backdoor is being deployed by ransomware access broker KongTuke in targeted attacks against insurance companies, educational institutions, and IT firms.
Multiple vulnerabilities in NGINX products compromise availability, integrity, and system security; extensive data manipulation and code execution are possible.
The BSI is investigating the security implications of widespread AI adoption and providing guidance for integrating new threats into existing cybersecurity strategies.