New: Flexible service plans for Myra WAF. Learn more!
Home>
Security Insights
News & Insights
SECURITY INSIGHTS
01 September 2024
Trending Topics Cybersecurity – August 2024
The threat situation for the German economy is intensifying massively, with increasing damage caused by cybercrime. Among other things, this is due to the significant increase in malicious data streams in the form of DDoS attacks, attacks on vulnerabilities in online applications and bot-based attacks.
SECURITY INSIGHTS
01 August 2024
Trending Topics Cybersecurity – July 2024
The Crowdstrike incident has highlighted the importance of redundant processes in IT infrastructure to minimise downtime and data loss. Meanwhile, the implementation of NIS-2 in Germany is progressing, but its timely implementation by October 2024 is still questionable.
SECURITY INSIGHTS
01 July 2024
Trending Topics Cybersecurity – June 2024
Inadequately patched vulnerabilities are a frequent gateway for cyber attacks. In June, attackers used vulnerable security gateways to penetrate the systems of the CDU and KRITIS operators. Meanwhile, security authorities are increasingly concerned about the influence of artificial intelligence on cybercrime.
SECURITY INSIGHTS
01 June 2024
Trending Topics Cybersecurity – May 2024
The cyber security situation for public organizations is alarming. The number of incidents is growing rapidly and the perpetrators are becoming increasingly professional, while many organizations are not sufficiently prepared.
SECURITY INSIGHTS
01 May 2024
Trending Topics Cybersecurity – April 2024
Zero-day exploits on the rise: The threat of targeted attacks on newly discovered security vulnerabilities for which no patches yet exist is increasing rapidly. Two trends in particular are responsible for the intensified threat situation.
SECURITY INSIGHTS
01 April 2024
Trending Topics Cybersecurity – March 2024
The public sector is more at risk from cybercrime than ever before. A wave of massive DDoS attacks hit public organizations in France in March. Overall, the threat situation is becoming more critical due to overload attacks, as a recent IT security survey shows.
SECURITY INSIGHTS
12 March 2024
Massive DDoS attack on French authorities
Cyber criminals have hit large parts of the French administration with a massive wave of DDoS attacks. Myra security expert Rebecca Roche explains in an interview how administrative authorities can protect themselves against such attacks and what to do in an emergency.
SECURITY INSIGHTS
01 March 2024
Trending Topics Cybersecurity – February 2024
Europe has become the epicenter of cybercrime. In Germany, spending on IT security has exceeded the €10 billion mark for the first time. Despite successful raids by investigating authorities, cyber groups are quickly reappearing on the scene.
SECURITY INSIGHTS
01 February 2024
Trending Topics Cybersecurity – January 2024
According to the latest Allianz Risk Barometer, cyber incidents are the top business risk for companies in Germany and worldwide. The German financial supervisory authority BaFin shares this view: it classifies cyberattacks as one of the main risks for the financial sector.
SECURITY INSIGHTS
02 January 2024
Trending Topics Cybersecurity – December 2023
According to the European Union Agency for Cybersecurity (ENISA), DDoS attacks continue to pose a serious threat. The most affected sector is the government administration sector. More than half of all attacks caused total disruption in the target.
SECURITY INSIGHTS
01 December 2023
Trending Topics Cybersecurity – November 2023
According to the German Federal Office for Information Security (BSI), the cyber threat situation in Germany remains tense to worrying. This was reflected in numerous extortion and DDoS attacks in November.
SECURITY INSIGHTS
01 November 2023
Trending Topics Cybersecurity – October 2023
The new Rapid Request attack method threatens countless web servers worldwide via a gap in the HTTP/2 network protocol. Meanwhile, cities and local authorities are increasingly being targeted by cyber criminals. DDoS attacks and encryption Trojans are paralyzing central specialist procedures and cutting off communication channels to citizens.
SECURITY INSIGHTS
02 October 2023
Trending Topics Cybersecurity – September 2023
According to Germany's digital association Bitkom, data theft, espionage and sabotage cause annual damage of 206 billion euros to the German economy. In September, in addition to extortion attacks, there were again numerous politically motivated DDoS attacks.
SECURITY INSIGHTS
01 September 2023
Trending Topics Cybersecurity - August 2023
Artificial intelligence and criminal energy: cybercriminals are increasingly abusing the power of intelligent systems for their attacks. Research teams are therefore focusing their attention on the question of which attack scenarios the new technologies make possible.
SECURITY INSIGHTS
30 August 2023
Cyber Resilience Act makes security by design a must
The CRA defines specific cybersecurity requirements and support specifications for digital products in Europe for the first time. In this way, the EU Commission aims to strengthen the protection of consumers and companies alike.
SECURITY INSIGHTS
01 August 2023
Web Application Security Report H1 2023
Defcon DDoS: Authorities on alert – In the first half of 2023, Myra's Security Operations Center (SOC) saw a 186 percent year-over-year increase in malicious requests. Most attacks targeted public sector organizations. Read this and more in our H1 2023 semi-annual report.
SECURITY INSIGHTS
01 August 2023
Trending Topics Cybersecurity – July 2023
The BSI has new leadership and is to be given new powers to oversee the regulation of NIS-2-regulated companies. Meanwhile, a new data protection agreement between the EU and the U.S. enters into force, which has been sharply criticized from the start.
SECURITY INSIGHTS
03 July 2023
Trending Topics Cybersicherheit – June 2023
Cyberattacks are an issue for all organizations - large and small. This fact was evidenced in June by a series of cyberattacks that caused systems at both international hyperscalers and municipal IT providers to fail.
SECURITY INSIGHTS
23 June 2023
How to avoid downtime: identify and fix the 9 most common causes
Optimal availability and performance are the basic prerequisites for successful websites. In contrast, online service outages cause massive damage. In the Myra Fact Sheet on Downtime Minimization, IT managers find out how to protect their company from such damage.
SECURITY INSIGHTS
01 June 2023
Trending Topics Cybersicherheit – May 2023
In May, there were again numerous cyberattacks on companies and public authorities. At the same time, however, law enforcement agencies also successfully took action against criminal activities on the Net.
SECURITY INSIGHTS
01 June 2023
NIS-2: What companies need to know now
NIS-2 finally makes IT security a matter for the boss. For companies in Germany, the new EU directive means: stricter requirements, wider scope and more critical consequences.
SECURITY INSIGHTS
08 May 2023
Threat Assessment: Assess attack risk now and identify appropriate protection solutions
Assess your individual threat situation and your current level of protection to specifically optimize your application and network security - quickly and easily with the Myra Threat Assessment Card.
SECURITY INSIGHTS
05 May 2023
SSL/TLS termination: focus on compliance and trust Cover
Protection and CDN service providers need to decode encrypted traffic to detect attacks and accelerate website content. Therefore, choosing a trusted service provider is crucial.
SECURITY INSIGHTS
02 May 2023
Trending Topics Cybersecurity - April 2023
Attacks on German government websites are still booming. The BSI even classifies attacks on local authorities as more critical than those on the federal government.
SECURITY INSIGHTS
27 April 2023
New DDoS attack vector: SLP vulnerability enables amplification attacks with factor 2,200
It should not be long before cybercriminals abuse one of the more than 50,000 vulnerable SLP instances visible on the Internet for volumetric attacks. Myra customers can rest easy, however.
SECURITY INSIGHTS
26 April 2023
Critical DDoS threat situation persists: government organizations increasingly under attack
No relief at the start of the year: the number of attacks on websites, Internet portals and APIs in the first quarter of 2023 is at the high level of the previous year.
SECURITY INSIGHTS
01 March 2023
Trending Topics Cybersecurity - February 2023
The BSI has new leadership and even NATO or the FBI are not immune to cyberattacks.
SECURITY INSIGHTS
01 February 2023
Trending Topics Cybersecurity - January 2023
Despite the acute threat situation, many companies still underestimate the massive consequences of cyberattacks - with serious consequences.
SECURITY INSIGHTS
17 October 2022
Success story: Myra secures NFON's cloud communication services
Elementary & highly complex: How NFON protects IP telephony from cybercriminals with certified Myra services.
SECURITY INSIGHTS
16 August 2022
Success story: Collaboration platform Stackfield relies on managed security services from Myra
The search for a DSGVO-compliant, preventive DDoS protection for all collaboration platform applications led Stackfield to Myra.
SECURITY INSIGHTS
01 July 2022
Trending Topics cybersecurity – June 2022
BSI President Arne Schönbohm sees a significantly heightened threat level due to cyberattacks in Germany. In June, municipal institutions, energy suppliers as well as political parties and federal authorities were among the targets of cybercriminals.
SECURITY INSIGHTS
03 June 2022
Attackers exploit zero-day vulnerability in Atlassian Confluence for remote code execution
Attackers are using a zero-day vulnerability in Confluence Server and Data Center to deliver malicious code to vulnerable systems - threatening massive damage. Learn how Myra protects against the new threat here.
SECURITY INSIGHTS
16 May 2022
Success Story: IT Security for BaFin-Compliant Crypto Custody
BaFin-compliant IT security: Find out in our success story why Finoa relies on Myra Security to outsource digital protection solutions.
SECURITY INSIGHTS
01 April 2022
Hackers use Spring4Shell exploit for remote code execution
Hackers are using the Spring4Shell vulnerability to inject malicious code onto vulnerable servers, posing the threat of major damage. Learn here how Myra protects against the new threat.
SECURITY INSIGHTS
21 March 2022
Risks in BaFin’s Focus 2022: Supervisory Authority Wants to Intensify Dedicated IT Audits
Cyber incidents pose a growing threat to the financial industry. BaFin is responding to this development with tighter IT controls and enforcement measures.
SECURITY INSIGHTS
18 March 2022
Fend off DDoS extortion: Success Story with mailbox.org
The mailbox.org email service was targeted by DDoS extortionists last fall. With the help of Myra Security, the operator Heinlein Hosting was able to secure the availability of the service without paying protection money.
SECURITY INSIGHTS
28 February 2022
Supervisory authorities step up data protection controls in the public sector
EU supervisory authorities have launched a comprehensive investigation into cloud use in the public sector. The objective is to uncover and remedy any breaches of data protection.
SECURITY INSIGHTS
24 January 2022
Log4J vulnerability: internet on red alert
The critical “Log4Shell” vulnerability in the Java Log4J library enables attackers to inject malicious code on web servers and inflict massive damage. Find out everything you need to know about the vulnerability and how you can protect yourself.
SECURITY INSIGHTS
21 January 2022
Cyber incidents are the greatest risk to companies
Allianz rates cyber incidents caused by attacks or technical failures as the most significant risk for companies in 2022.
SECURITY INSIGHTS
01 December 2021
Operational resilience: BaFin puts even greater focus on cybersecurity
BaFin has set itself the goal of strengthening the operational resilience of the financial industry. An important part of this is the digital safeguarding of banks, insurance companies, and affiliated service providers.
SECURITY INSIGHTS
28 October 2021
Regulators take action against unauthorized use of U.S. cloud service providers
In an interview, KPMG legal expert Sebastian Hoegl reveals how Europeancompanies can best respond when they get a letter from the data protection authority or have concerns about whether they are violating data protection provisions by using U.S. cloud service providers.
SECURITY INSIGHTS
14 October 2021
A scalpel, not a shotgun: DDoS extortion with increasing precision
Extortionists are increasingly targeting cash-rich companies in critical sectors such as finance and healthcare. Having preventive protection for operational business is therefore crucial.
SECURITY INSIGHTS
27 August 2021
223 billion euros in damage caused by cyber attacks – why the number of unreported cases is much higher
When critical infrastructure is attacked, the actual damage is far greater. That is why the protection of critical infrastructure is fundamental to the well-being of us all.
SECURITY INSIGHTS
26 August 2021
BaFin revises MaRisk and BAIT: Higher compliance requirements for banks
In light of advancing digitalization, cybersecurity is becoming an even greater focus of supervisory attention. Institutions must prepare for new or more specific regulations related to outsourcing, contingency management, and effectiveness controls, for example.
SECURITY INSIGHTS
18 August 2021
The lessons from the cyber disaster in Anhalt-Bitterfeld
For maximum security, existing protective measures should be continuously reviewed and adapted. Specialized service providers can help with this.
SECURITY INSIGHTS
02 June 2021
Digital bank heists: Bonnie and Clyde would be hackers today
These days, bank robbers are no longer armed with a handgun nor wear a hood – a laptop and just a bit of criminal energy are often all that’s needed.
SECURITY INSIGHTS
19 May 2021
IT security creates a foundation of trust for e-health solutions
In the healthcare sector, digital solutions are increasingly being used in administration, diagnostics, and treatment. Security and data protection are given top priority in order to promote social acceptance of e-health.
SECURITY INSIGHTS
12 May 2021
Financial regulator steps up controls on IT and cybersecurity
In light of advancing digitalization, cyber risks are becoming an even greater focus for BaFin. The supervisory authority is paying particular attention to the outsourcing of IT services.
SECURITY INSIGHTS
20 November 2021
Cyber insurance: DDoS and blackmail cause the most expensive damage
While external attacks account for the majority of the damage, internal incidents are the most common cause of cyber damage—but with a lower financial impact.
SECURITY INSIGHTS
02 November 2020
Cyber warfare: US military succeeds in strike against the TrickBot botnet
The U.S. Cyber Command has temporarily disrupted the botnet allegedly controlled by Russian cyber criminals to prevent it from impacting the U.S. presidential election.
SECURITY INSIGHTS
26 October 2020
BSI report: “Threat situation in the KRITIS sector remains at a high level”
CRITIS operators across sectors face DDoS and ransomware attacks in particular. Complex DDoS attacks on banks caused disruptions in payment transactions.
SECURITY INSIGHTS
05 October 2020
Lives depend on cybersecurity in critical infrastructures
A ransomware attack brought down key systems at the University Hospital of Düsseldorf. Due to limited operations, there were major restrictions in patient care – with tragic consequences.
SECURITY INSIGHTS
03 September 2020
BaFin demands higher hurdles for IT outsourcing
Raimund Röseler, BaFin Executive Director for Banking Supervision, is in favor of IT outsourcing to qualified service providers. However, he is calling for the right of direct control over the service providers. Banks must choose their IT partners with care.
SECURITY INSIGHTS
15 July 2020
Digitalization in healthcare in demand as never before
International studies show that patients are increasingly demanding digital treatment methods such as telemedicine, health apps or AI-supported diagnosis programs. However, IT security, data protection and compliance are the basis for successful digitalization in the healthcare sector.
