Digitalization: Unsafe i-vehicle portals will be blocked

5 January 2024
| No comments
B2B Cyber ​​Security ShortNews

Share post

For Federal Minister Wissing it is the big hit: internet-based vehicle registration, i-Kfz for short. However, it seems that many municipalities currently do not meet the IT security standards for operating a portal - because although it is centralized in terms of data, otherwise vehicle registration is a state matter.

It's not just companies that will have to meet many IT security requirements from 2024. The states and municipalities also have a lot of catching up to do. Internet-based vehicle registration, i-Kfz for short, should actually take off everywhere and thus make annoying waiting times at offices unnecessary. In many places, however, reality has prevented this wish: according to many media reports, 25 to 30 percent of municipal i-vehicle portals do not meet the minimum safety requirements (MSA) of the Federal Motor Transport Authority (KBA). The KBA therefore prohibits operation and only manual approval is possible.

High standards are intended to ensure IT security

The i-Kfz portals should actually have been working everywhere since September 2023. After operations got off to a stuttering start, many portals are now being shut down again. How Heise When asked by the KBA, he found out: “According to the KBA, the computer systems of many approval bodies do not meet the minimum security standards.” The KBA standards from April 2023 contain points such as:

  • “Company carrying out penetration tests: The applicant commissions a company with appropriate expertise to carry out the prescribed penetration tests. This step is completed with the successful completion of the penetration tests and creation of the report.”
  • “Auditing person: An audit is commissioned by the applicant to confirm compliance with the minimum security requirements.”

Apparently people have learned from the mistakes of the past and the i-Kfz portal only allows them to be checked accordingly. Finally, there are current examples to learn from. Something like that the cyber attack on South Westphalia's IT, which paralyzed almost 100 communities.

More at BMDV.bund.de

 

Matching articles on the topic

Report: 40 percent more phishing worldwide

The current spam and phishing report from Kaspersky for 2023 speaks for itself: users in Germany are after ➡ Read more

IT security: NIS-2 makes it a top priority

Only in a quarter of German companies do management take responsibility for IT security. Especially in smaller companies ➡ Read more

BSI sets minimum standards for web browsers

The BSI has revised the minimum standard for web browsers for administration and published version 3.0. You can remember that ➡ Read more

Stealth malware targets European companies

Hackers are attacking many companies across Europe with stealth malware. ESET researchers have reported a dramatic increase in so-called AceCryptor attacks via ➡ Read more

IT security: Basis for LockBit 4.0 defused

Trend Micro, working with the UK's National Crime Agency (NCA), analyzed the unpublished version that was in development ➡ Read more

MDR and XDR via Google Workspace

Whether in a cafe, airport terminal or home office – employees work in many places. However, this development also brings challenges ➡ Read more

Test: Security software for endpoints and individual PCs

The latest test results from the AV-TEST laboratory show very good performance of 16 established protection solutions for Windows ➡ Read more

FBI: Internet Crime Report counts $12,5 billion in damage 

The FBI's Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which includes information from over 880.000 ➡ Read more

Short news
, , , ,