The BSI is investigating the security implications of widespread AI adoption and providing guidance for integrating new threats into existing cybersecurity strategies.
30,000 German enterprises must align their IT security governance with EU-wide NIS2 requirements, which standardizes incident reporting, risk management, and supply chain security.
The BSI extends the NIS2 registration deadline to the end of July as significantly fewer companies than expected have fulfilled their reporting obligations.
Backup systems with failed restoration tests and MFA bypasses via fatigue-push flooding or adversary-in-the-middle attacks are critical failure points in practice.
The CritInfra Ordinance draft contains definitional gaps and relies on a 20-year-old, methodologically disputed threshold of 500,000 persons that does not adequately reflect actual critical infrastructure risks.