With its report on the situation of IT security in Germany, the BSI - Federal Office for Information Security provides an annual comprehensive overview of the threats in cyberspace. Current: The threat in cyberspace is higher than ever before.
The cybersecurity situation in Germany remains tense. This emerges from the current report on the situation of IT security in Germany, which Federal Interior Minister Nancy Faeser and Claudia Plattner, President of the Federal Office for Information Security (BSI), presented today. The BSI management report makes it clear that ransomware attacks are currently the biggest threat. In addition, there is growing professionalization on the part of perpetrators, which is accompanied by an increasing number of security gaps.
Advertising
During the reporting period, the BSI registered around 250.000 new variants of malware and 21.000 systems infected with malware every day. In addition, there are an average of 70 new security vulnerabilities per day, one in two of which are classified as high or critical. This corresponds to an increase of 24 percent compared to the previous year.
Ransomware is the most dangerous type of attack
🔎 The BSI report on the IT security situation in Germany shows that vulnerabilities in software products in particular are continuing to increase (Image: BSI).
The professionalism with which attackers operate in cyberspace is reflected in the increased division of labor and the targeted use of AI tools. In terms of the different types of attacks, ransomware attacks currently pose the greatest threat. They cause much of the economic damage caused by cyberattacks. Ransomware attacks have a lasting impact on entire value chains. Small and medium-sized companies, municipalities and municipal companies in particular are affected by the often serious consequences of these attacks.
Advertising
Subscribe to our newsletter now
Read the best news from B2B CYBER SECURITY once a month
Expand for details on your consent
It goes without saying that we handle your personal data responsibly. If we collect personal data from you, we process it in compliance with the applicable data protection regulations. Detailed information can be found in our Privacy Policy. You can unsubscribe from the newsletter at any time. You will find a corresponding link in the newsletter. After you have unsubscribed, your data will be deleted as soon as possible. Recovery is not possible. If you would like to receive the newsletter again, simply order it again. Do the same if you want to use a different email address for your newsletter. If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use newsletter service providers, which are described below, to process the newsletter.
CleverReach
This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter “CleverReach”). CleverReach is a service that can be used to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter (e.g. email address) will be stored on the CleverReach servers in Germany or Ireland. Our newsletters sent with CleverReach enable us to analyze the behavior of the newsletter recipients. This can include It is analyzed how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a previously defined action (e.g. purchase of a product on this website) took place after clicking on the link in the newsletter. Further information on data analysis by CleverReach newsletter is available at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/. The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation. If you do not want an analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you have canceled the newsletter. Data stored by us for other purposes remain unaffected. After you have been removed from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You may object to the storage if your interests outweigh our legitimate interest.
For more information, see the privacy policy of CleverReach at: https://www.cleverreach.com/de/datenschutz/.
Data processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.
Software vulnerabilities at worrying levels
The BSI is registering more and more vulnerabilities in software. These vulnerabilities are often a gateway for cyber criminals to compromise systems and networks. With an average of almost 70 new vulnerabilities in software products per day, the BSI registered around a quarter more than in the previous reporting period. As the number increases, so does their potential harmful effect: more and more gaps (around one in six) are classified as critical.
Data theft and cyber espionage
The threat situation in the reporting period was particularly characterized by data theft. In many cases, these were also linked to ransomware attacks, in which cybercriminals exfiltrated large amounts of data from organizations with the aim of blackmail. In contrast, cyber espionage often serves the goal of political and social influence. In addition, public facilities were repeatedly targeted with DDoS attacks during the reporting period. So far, however, these attacks have had no relevant damaging effect.
Destabilization and disinformation through AI
Politically motivated cyber attacks are not limited to data theft or paralyzing digital services: attackers can increasingly take advantage of the possibilities of artificial intelligence. Tools that can be used to create, modify or distort texts, voices or images are becoming increasingly available and easier to use. The risk of disinformation and cyberbullying through fake images or videos increased during the reporting period.
About the Federal Office for Information Security (BSI)
The Federal Office for Information Security (BSI) is the federal cyber security authority and the creator of secure digitization in Germany. The guiding principle: As the federal cyber security authority, the BSI designs information security in digitization through prevention, detection and reaction for the state, economy and society.
A recent survey of cybersecurity experts in companies in Germany shows a clear need for cybersecurity strategies that go beyond traditional solutions. ➡ Read more
Water is one of the most valuable resources as the basis of all life. It is therefore no wonder that water supply is increasingly becoming a goal ➡ Read more
According to Symantec, the Play ransomware group and allied groups are using an exploit that targets the zero-day vulnerability CVE-2025-29824. The vulnerability was ➡ Read more
An industry-first endpoint security solution that hardens endpoints dynamically and tailored to each user: Bitdefender's PHASR. This ensures that security configurations ➡ Read more
A leading IT security company has published its latest cybersecurity report. Only a quarter of German security experts are optimally prepared for ransomware attacks. ➡ Read more
Security researchers have uncovered a sophisticated Phishing-as-a-Service (PhaaS) platform that poses a serious threat to organizations around the world. The threat actor ➡ Read more
