My Tiny Feed

taz.de

Germany's NIS2 Implementation Faces Criticism

Experts criticize Germany's draft law for implementing the EU's NIS2 directive due to its weaknesses, exemptions for government agencies, and fragmented legislation, highlighting the need for a holistic approach to cybersecurity and digital resilience.

Read original article in German

German

Germany

Germany EuCybersecurityLegislationIt

BitkomBsiHisolutionsInterfaceUniversity Of Bremen

Dennis-Kenji KipkerTimo KobFelix KuhlenkampSven Herpig

What is the central point of criticism regarding the exemptions in the draft law?: A central criticism is the extensive exemptions for government agencies, creating a double standard where companies face strict requirements while the state enjoys reduced ones.
What are the main criticisms of Germany's draft law implementing the EU's NIS2 directive?: The German government is criticized for its draft law implementing the EU's NIS2 directive, which experts deem weak and unclear, hindering improvements in cybersecurity.
How is Germany's current cybersecurity legislation described, and why is that problematic?: The current cybersecurity legislation in Germany is fragmented and inconsistent, which experts argue is neither efficient nor effective in enhancing cybersecurity.
What are the financial implications of cyberattacks in Germany, and what is the trend in affected businesses?: The rising costs of cyberattacks, estimated at €266.6 billion in the last year in Germany, and the growing number of affected businesses highlight the urgency of improved cybersecurity measures.
What is the proposed holistic approach to address cybersecurity in Germany, and what additional measures are suggested?: Experts recommend a holistic approach focusing on digital resilience, encompassing not just cybersecurity but also the ability of institutions to withstand attacks and disruptions, alongside expanding training for IT security professionals.

Jan 21, 19:10

Rhineland-Palatinate Universities Strengthen Cybersecurity with €5 Million Investment

Rhineland-Palatinate's 12 universities are implementing a joint cybersecurity strategy funded with €5 million, establishing a service center and appointing cybersecurity officers at each university to improve IT security and response to cyberattacks, following a June 2023 attack on Kaiserslautern University that disabled all IT systems.

Jan 18, 13:07

German Security Agency Warns Against Solar Power Grid Plan Due to Cybersecurity Risks

Germany's plan to use internet-capable Chinese-made inverters in solar power plants to stabilize the grid faces strong opposition from the BSI due to significant security risks, as these inverters could be remotely controlled by the manufacturers or hackers, potentially impacting the entire European energy grid.

Jan 16, 19:09

Unnecessary App Permissions Enable Extensive Location Data Collection

The North Rhine-Westphalia data protection authority warns against granting unnecessary app permissions, especially location access, due to concerns about data collection and resale by third parties, as highlighted by recent investigations revealing the sale of location data of nearly 800,000 people on international markets.

Jan 15, 10:09

Russia's Hybrid War: A Former Intelligence Official's Assessment

Former German intelligence official Arndt Freytag von Loringhoven details Russia's hybrid warfare tactics against Europe, including sabotage, cyberattacks, and disinformation campaigns, highlighting the difficulty of attribution and advocating for stronger defensive and offensive measures.