In a recent interview with the online magazine Business punk our founder and CEO Tim Schughart spoke about the SPD hack and the urgently needed improvement of IT security in Germany. He shares his view on the current threats and explains how companies and government institutions can better protect themselves against cyber attacks.
In conversation with Business punk Tim Schughart makes a clear statement: "I can't hear that anymore - just like I can't hear this nonsense that we need 'hackbacks' now." In his opinion, the focus should be on preventive measures. Cyber resilience, i.e. the ability to detect and ward off cyber attacks early, is the top priority. Hackbacks are only an issue once you have adequately protected yourself - and even then only as a deterrent, similar to nuclear weapons.
Tim Schughart explains that the threat of cyber attacks, as in the case of the SPD, is often underestimated due to outdated security measures and a lack of vulnerability management: "The missing patch cannot be an excuse: If the other entry points had been properly closed, then the SPD would not have had a problem!" This clearly shows that a holistic IT security strategy is required to protect companies and government institutions from critical attacks.
In addition to criticizing the government coalition in the area of IT security, our CEO also talks about the challenges that affect companies in the economy. Many companies have IT administrators and developers, but often do not have the necessary expertise in the area of IT security. "But these are completely different professions, just as an orthopedic surgeon should not perform heart surgery," explains Schughart.
He calls for companies to bring in external IT security companies like ProSec to build a solid security foundation. He particularly emphasizes the importance of qualified specialists. "On LinkedIn, you even demanded that every CISO should be a former hacker," Tim Schughart is quoted as saying in the interview. This shows how essential practical experience in the field of cyber defense is in order to withstand the growing threats.
Your own IT people are usually system administrators or software developers, not IT security professionals. But these are completely different professions, just as an orthopedic surgeon should not perform heart surgery.
Overall, Tim Schughart calls for more responsibility and willingness to act in the area of IT security in the interview - both from government institutions and companies. With the right technical means and focused vulnerability management, organizations can protect their systems against threats such as ransomware and targeted espionage attacks.
A Microsoft security update has unexpectedly created a new security vulnerability that puts businesses at risk. This undocumented side effect could block users' Windows updates and cut off systems from future security updates. A potential nightmare for IT security and business management.
Two critical vulnerabilities in Spotfire's AI analytics platform could be exploited by hackers to threaten companies in the industrial, financial, and research sectors. Experts urge CEOs, CIOs, and CISOs to take these risks seriously and act strategically.
A security vulnerability in the WordPress plugin "SureTriggers" puts over 100.000 corporate websites at risk. This article highlights the risks and provides recommendations for effective IT security strategies.
