Insights & Articles
Technical analyses, incident reports and practical articles on cybersecurity, DNS security and IT infrastructure — straight from the field.
TKG Amendment Act 2026: New Network Expansion Rules
The 2026 TKG Amendment Act introduces new rules for fibre and mobile network expansion in Germany. Key changes for telecommunications operators at a glance.
CVE-2026-31718: Linux Kernel ksmbd Use-After-Free Vulnerability
CVE-2026-31718 affects Linux ksmbd with a use-after-free in __ksmbd_close_fd(), enabling kernel memory corruption via SMB connections.
BSI C3A: New Criteria for Sovereign Cloud Services
Germany’s BSI publishes the C3A criteria catalog for cloud autonomy. Six sovereignty objectives extend the C5 standard and make digital self-determination measurable.
GreenPlasma: Arbitrary Section Creation on Windows – Analysis and Detection
Technical analysis of the GreenPlasma PoC (Nightmare-Eclipse): Object Manager symlinks and registry link abuse as a privilege escalation chain on Windows 11 – with Sysmon and Wazuh detection rules.
Microsoft Patch Tuesday May 2026: 120 Vulnerabilities Fixed
Microsoft fixes 120 security vulnerabilities in the May 2026 Patch Tuesday, including 17 critical flaws in Windows, Office and SharePoint.
YellowKey: BitLocker Bypass Discovered in Windows 11
Researchers disclose the YellowKey vulnerability, which bypasses BitLocker protection in Windows 11 and Server 2022/2025. A USB stick is enough for full access.
Ollama CVE-2026-7482: Critical Vulnerability Fixed
Ollama fixes CVE-2026-7482 in v0.17.1, a critical out-of-bounds read vulnerability that could expose API keys and chat data.
RubyGems Halts Registrations After 500+ Malware Packages
More than 500 malicious packages forced RubyGems to suspend new account registrations. The attack targeted the platform itself, not its users.
Indirect Prompt Injection: A New Threat to Enterprise AI
Indirect prompt injection attacks on enterprise AI agents are up 32%. Attackers hide commands in emails and documents. Protective measures are essential.
G7 Publish SBOM Minimum Standards for AI Systems
For the first time, the G7 define minimum elements for a Software Bill of Materials (SBOM) for AI systems. More transparency for secure AI supply chains.
DORA Resilience: IAM Architecture as a Critical Success Factor
Access security and IAM architecture determine DORA compliance. Formal touch-ups are not enough — genuine resilience requires substantive measures.
Siemens S7 PLC XSS Vulnerabilities: Security Update Required
Critical XSS vulnerabilities discovered in Siemens SIMATIC S7 PLCs Web Server. Authenticated attackers can carry out Cross-Site Scripting attacks.
DNSSEC Failure in the .de Zone: Why bahn.de, spiegel.de and blackfort-tec.de Returned SERVFAIL
Technical deep-dive into a DNSSEC incident at DENIC: malformed RRSIG for NSEC3 records, impact on validating resolvers, and lessons learned for security monitoring.
bahn.de and spiegel.de Unavailable: What Went Wrong with DNS Today
On May 5, 2026, many users could not reach bahn.de, spiegel.de and other .de websites – even though the internet was working fine. What happened? Explained without jargon.