BLOG

Was ist ein sicheres Passwort – Bauchgefühl oder Kryptografie? Eine Analyse des Fortinet-Leaks mit über 76.000 realen Zugangsdaten zeigt, wie erschreckend aktuell triviale Muster wie „Summer2021!“ noch immer sind. Zwischen menschlicher Merklogik und technischer Realität offenbart sich ein gefährlicher Spalt. Dieser Beitrag bringt Struktur in die Debatte – faktenbasiert, praxisnah und mit klarem Blick auf Risiken.

Ein Admin-Zugang mit dem Passwort „123456“ auf der McDonald’s-Bewerbungsplattform – kein Einzelfall, sondern ein Spiegel für ein grundlegendes Problem: Policies sind nicht gleich gelebte Sicherheit. Dieser Artikel verbindet reale Vorfälle mit dem Gedanken bewussten Handelns und zeigt, warum Security mehr ist als Technik.

Why compliance alone does not protect against attacks and a proactive strategy is essential.

Security awareness is not created through training alone, but through daily behavior. This article explains why cultural design is crucial, how secure habits can be established in the workplace, and why private behavior on social media also impacts professional security. Those who lead by example make security accessible to others.

LLMs boost IT security — but also create new attack surfaces. The OWASP report reveals where real risks are hiding.

The National Vulnerability Database (NVD) is in crisis — delays and missing assessments are undermining global trust. With the launch of the EUVD, Europe introduces its own vulnerability platform. But is a second database truly needed, or are we risking fragmentation over security? This article explores the opportunities, challenges, and strategic relevance of digital sovereignty for Europe.

Browsers store passwords conveniently but pose risks – for critical accounts, dedicated password managers are the better choice.

Air-gapped systems: often just VLANs instead of real isolation. Why the term rarely delivers what it promises in practice.

CVE identifies vulnerabilities, CVSS assesses their risk. Both help to prioritize and effectively address cyber risks.

Human error is a risk in cyber security. How policies can promote work reality and employee strengths.

Native cloud firewalls provide basic protection, but additional measures are essential for comprehensive security.

AI in cyber security: Not a panacea, but a powerful tool – used correctly, it specifically complements human expertise.

Prevention is not enough: preparation can minimize damage from cyber attacks and build confidence in corporate security.

Quantum computing poses major challenges for IT security – but it also opens up opportunities for a secure future.

Apple Pay vs. Google Pay in comparison: security, functions and differences of the mobile payment services at a glance.

Cyber ​​Threat Landscape for 2025: A look at trends such as AI, quantum computing & increasing cyber attacks. Recognize risks & act!

Why vulnerability scanners will soon be a thing of the past and how modern pentests can better protect companies from cyber threats.

Cybercriminals are using Microsoft Teams for sophisticated social engineering attacks. Find out how companies can protect themselves.

Goodbye to password changes? Why the new NIST and BSI recommendations are useful, but still not risk-free.

Discover the importance of managing a company's attack surface to prevent cyberattacks and ensure robust security measures.