Identities are the new perimeter From network fencing to zero trust
Management Summary The era of network perimeters is over. Attacks start via email, browsers, remote access, identities, and services that never see your L...
Practical check: Audits in the supply chain
Management Summary Those who do not assess their partners outsource third-party risks —straight onto their own balance sheet. The way forward is not a mon...
Software supply chains The silent gateway
Management Summary Attacks via dependencies are no longer a fringe topic, but the most convenient shortcut into the heart of modern IT. The truth: most en...
Close the entry gates: vulnerabilities, phishing, web apps
Why these three doors dominate Uncomfortable but true: attackers don’t need exotic exploits. In an above-average number of cases, open vulnerabilities, un...
Germany Under Pressure: Why Case Numbers Are Exploding
Management Summary An uncomfortable diagnosis: Germany is economically attractive to ransomware actors. High value creation depth, dense supply chains, a ...
Ransomware: A Business Model Scales
Management Summary The hard truth: ransomware is no longer a “special case,” but industrial day-to-day business for attackers. The RaaS model lowers entry...
Cyber costs explained: From direct damage to downtime costs
Management Summary Most companies massively underestimate their cyber costs. Not because accounting is poor, but because relevant items are not captured a...
The price of uncertainty: Why investment is rising, but so is risk
The paradox: More spending, same risk Year after year, companies are spending more on IT security —and yet cyber risk remains high. The reason is uncomfor...
Cyber Situation 2025: From Reacting to Acting Proactively
Management Summary The current cyber situation in 2025 is clear: reactive, “best-effort” approaches are failing due to the speed and professionalism of at...