Blackfort Technology

Insights & Articles

Technical analyses, incident reports and practical articles on cybersecurity, DNS security and IT infrastructure — straight from the field.

Security AdvisoryJune 10, 2026·Technical

Check Point VPN CVE-2026-50751: Active Exploitation Detected

Critical authentication bypass CVE-2026-50751 in Check Point VPN is being actively exploited. CVSS 9.3, CISA KEV, IKEv1 certificate validation bypass — Qilin ransomware affiliate activity observed.

CVE-2026-50751Check PointVPNAuthentication BypassIKEv1CISA KEVQilin RansomwareZero-Day
Read article →
RegulationJune 9, 2026·Technical

DORA, GDPR & AI Act: Bitkom Guide for Insurers 2026

Bitkom publishes a guide on integrated compliance with DORA, GDPR and the EU AI Act for the insurance sector. Practical implementation for 2026.

DORAGDPRAI ActInsuranceComplianceBitkomEU RegulationInsurTechGovernanceRisk Management
Read article →
Security AdvisoryMay 27, 2026·Technical

7-Zip CVE-2026-48095: Critical RCE Vulnerability Patched

7-Zip 26.00 contains critical vulnerability CVE-2026-48095 with CVSS 8.8. A heap overflow in the NTFS handler enables remote code execution. Update to 26.01 available.

CVE-2026-480957-ZipRemote Code ExecutionHeap OverflowNTFSVulnerability ManagementPatch Management
Read article →
RegulationMay 20, 2026·Technical

TKG Amendment Act 2026: New Network Expansion Rules

The 2026 TKG Amendment Act introduces new rules for fibre and mobile network expansion in Germany. Key changes for telecommunications operators at a glance.

TKGTelecommunicationsNetwork ExpansionFibreMobileRegulationBMDSLegislation
Read article →
Security AdvisoryMay 18, 2026·Technical

CVE-2026-31718: Linux Kernel ksmbd Use-After-Free Vulnerability

CVE-2026-31718 affects Linux ksmbd with a use-after-free in __ksmbd_close_fd(), enabling kernel memory corruption via SMB connections.

CVE-2026-31718Linux KernelksmbdUse-After-FreeSMBMemory CorruptionVulnerability
Read article →
Security ResearchMay 15, 2026·Technical

BSI C3A: New Criteria for Sovereign Cloud Services

Germany’s BSI publishes the C3A criteria catalog for cloud autonomy. Six sovereignty objectives extend the C5 standard and make digital self-determination measurable.

BSICloud SovereigntyC3AC5ANSSIComplianceIT-GrundschutzDigital Self-Determination
Read article →
Security ResearchMay 14, 2026·Technical

GreenPlasma: Arbitrary Section Creation on Windows – Analysis and Detection

Technical analysis of the GreenPlasma PoC (Nightmare-Eclipse): Object Manager symlinks and registry link abuse as a privilege escalation chain on Windows 11 – with Sysmon and Wazuh detection rules.

GreenPlasmaWindows 11Privilege EscalationCTFSysmonWazuhDetection Engineering
Read article →
Security AdvisoryMay 13, 2026·Technical

Microsoft Patch Tuesday May 2026: 120 Vulnerabilities Fixed

Microsoft fixes 120 security vulnerabilities in the May 2026 Patch Tuesday, including 17 critical flaws in Windows, Office and SharePoint.

MicrosoftPatch TuesdayVulnerabilitiesWindowsPatch Management
Read article →
Security AdvisoryMay 13, 2026·Technical

YellowKey: BitLocker Bypass Discovered in Windows 11

Researchers disclose the YellowKey vulnerability, which bypasses BitLocker protection in Windows 11 and Server 2022/2025. A USB stick is enough for full access.

BitLockerWindows 11YellowKeyVulnerabilityEndpoint Security
Read article →
Security AdvisoryMay 13, 2026·Technical

Ollama CVE-2026-7482: Critical Vulnerability Fixed

Ollama fixes CVE-2026-7482 in v0.17.1, a critical out-of-bounds read vulnerability that could expose API keys and chat data.

OllamaCVE-2026-7482AI SecurityLLM
Read article →
Supply Chain SecurityMay 13, 2026·Technical

RubyGems Halts Registrations After 500+ Malware Packages

More than 500 malicious packages forced RubyGems to suspend new account registrations. The attack targeted the platform itself, not its users.

RubyGemsSupply ChainMalwareRubyPackage Security
Read article →
AI SecurityMay 13, 2026·Technical

Indirect Prompt Injection: A New Threat to Enterprise AI

Indirect prompt injection attacks on enterprise AI agents are up 32%. Attackers hide commands in emails and documents. Protective measures are essential.

AI SecurityPrompt InjectionEnterprise AILLMGenAI
Read article →
AI SecurityMay 13, 2026·Technical

G7 Publish SBOM Minimum Standards for AI Systems

For the first time, the G7 define minimum elements for a Software Bill of Materials (SBOM) for AI systems. More transparency for secure AI supply chains.

SBOMG7AI SecuritySupply ChainCompliance
Read article →
IT SecurityMay 12, 2026·Technical

DORA Resilience: IAM Architecture as a Critical Success Factor

Access security and IAM architecture determine DORA compliance. Formal touch-ups are not enough — genuine resilience requires substantive measures.

DORAIAMComplianceFinancial SectorIdentity Management
Read article →
OT SecurityMay 12, 2026·Technical

Siemens S7 PLC XSS Vulnerabilities: Security Update Required

Critical XSS vulnerabilities discovered in Siemens SIMATIC S7 PLCs Web Server. Authenticated attackers can carry out Cross-Site Scripting attacks.

SiemensS7 PLCXSSOT SecurityICS
Read article →
Security AdvisoryMay 12, 2026·Technical

Apple Patches 170+ Vulnerabilities in May 2026 Updates

Apple fixes more than 170 security flaws in macOS, iOS, iPadOS, watchOS, tvOS and visionOS. Critical components such as the kernel and WebKit are affected.

AppleSecurity UpdateVulnerabilitiesiOSmacOSPatch ManagementMobile SecurityVulnerability Management
Read article →
Incident AnalysisMay 5, 2026·Technical

DNSSEC Failure in the .de Zone: Why bahn.de, spiegel.de and blackfort-tec.de Returned SERVFAIL

Technical deep-dive into a DNSSEC incident at DENIC: malformed RRSIG for NSEC3 records, impact on validating resolvers, and lessons learned for security monitoring.

DNSSECDENICDNSSERVFAILNSEC3
Read article →
Plain EnglishMay 5, 2026·General

bahn.de and spiegel.de Unavailable: What Went Wrong with DNS Today

On May 5, 2026, many users could not reach bahn.de, spiegel.de and other .de websites – even though the internet was working fine. What happened? Explained without jargon.

DNSOutagebahn.despiegel.deDENIC
Read article →