The Commission acknowledges that it has yet to obtain any details regarding the information that the applicant is required to disclose.
In the latest BSI report on IT security in Germany, several key cyber threats and mitigation strategies have been outlined. The report, which covers the period from June 2021 to May 2022, reveals an alarming increase in cyber threats, with the situation at an all-time high.
Ransomware attacks, particularly on companies, have emerged as the main threat vector. Big Game Hunting, a term used to describe ransomware attacks on large companies, has seen a significant increase during the observed period. The goal of these attacks is to gain access to local or networked data and systems.
The DNS layer requires high attention to detect ongoing ransomware attacks. Most ransomware attacks use DNS tunneling to establish bidirectional and unidirectional communication between an attacker and the systems in a network.
Distributed Denial of Service (DDoS) attacks are also on the rise, with cybercriminals developing advanced and strategically intelligent attacks that exploit publicly available disruption reports. These attacks were highlighted as a threat scenario in the context of the Russian attack on Ukraine. The number of DDoS attacks has increased, with a particularly noticeable spike during the annual Cyber Week 2021 and the pre-Christmas period.
Cybercriminals are using sextortion campaigns to threaten potential victims with the publication of supposed existing, compromising, intimate secrets. To prevent publication, victims are asked to transfer a certain amount in a cryptocurrency, such as Bitcoin.
The increase in new malware variants was overall 19% lower than in the previous reporting period. However, the number of new malware and malware variants has still increased by approximately 116.6 million in the current reporting period, with around 319,000 new malware variants per day on average. Intelligent malware has become more sophisticated, recognising sandbox environments and breaking down into small fragments, only reassembling itself after leaving the sandbox environment.
To combat these threats, the BSI recommends patch management and endpoint protection as central measures. Network Access Control (NAC) is a solution that minimises the average response time for patch management and maintains necessary security standards. The BSI's report also suggests the use of intelligent sandbox environments such as the OPSWAT Sandbox.
The multi-layered cybersecurity platform OPSWAT MetaDefender combines various solutions for comprehensive threat defense. This includes an Anti-Malware Multiscanner for parallel scanning with up to 34 AV engines. MetaDefender NAC is an ideal addition to the MetaDefender Platform, offering secure user authentication to network and cloud resources.
Moreover, the MetaAccess NAC enables secure user authentication to network and cloud resources via SAML and SDP, and creates device profiles after previous compliance security checks. A whitelist DNS filter, such as Blue Shield Umbrella by Blue Shield Security, is another effective tool for detecting and blocking dangerous DNS activities early.
The BSI introduced a vulnerability reporting form during the reporting period, resulting in 139 reports, an increase of over 400% compared to the previous year. More than half of the discovered vulnerabilities had high or critical scores according to the Common Vulnerability Scoring System (CVSS). The BSI's 2022 threat report indicates a 10% increase in software and hardware vulnerabilities in 2021, with 20,174 vulnerabilities discovered.
The APT groups mentioned in the BSI report 2022 on IT security in Germany include CloudSorcerer and DuneQuixote. CloudSorcerer conducted espionage targeting research institutions and critical infrastructure using advanced cloud-based techniques, while DuneQuixote targeted intellectual property in technology and energy sectors through sophisticated attacks involving supply chain vulnerabilities and fileless malware. Both groups are linked to state-sponsored actors, though without a stated country of origin.
The BSI's 2022 report serves as a stark reminder of the ever-evolving nature of cyber threats and the importance of robust cybersecurity measures. By implementing solutions such as NAC, MetaDefender, and whitelist DNS filters, organisations can better protect themselves against these threats and maintain the security of their networks and data.
