blog
01.07.2025 Encryption vs. Lawful Interception: EU policy news
There are some new developments in the EU policy sphere. Here are the main points.
blog
11.06.2025 CRA Vulnerability Reports: why would we not share them with other CSIRTs?
We will get reports under the Cyber Resilience Act concerning actively exploited vulnerabilities of products with digital elements. When should a national CSIRT delay the dissemination of such reports to other CSIRTs in the CSIRTs Network?
blog
16.04.2025 Multiple FortiGate devices compromised with a persistent read-only access
On Friday, April 10th, Fortinet released information about a worldwide compromise of FortiGate devices, giving the attacker persistent read-only access. Threat actors seemingly used three known vulnerabilities in the SSL VPN feature to gain initial access to the devices and a symbolic link in the file system to survive patching of FortiOS.