Overview
- Germany’s IT security agency reports that state‑linked espionage increasingly targets public administration, with further victims in justice, security and defense.
- About 950 ransomware incidents were officially recorded from July 2024 to June 2025, roughly 80% hitting small and mid‑sized businesses as average ransom demands increased despite fewer victims paying.
- Newly disclosed software flaws rose by 24% to an average of 119 per day, with misconfigurations and outdated systems leaving large attack surfaces across organizations.
- The BSI logged a sharp February spike in DDoS activity around high‑profile political events and cites hostile activity tied to actors operating from Russia, China, Iran and North Korea.
- Officials tout takedowns of LockBit and Alphv and propose a Cyberdome plus expanded powers and funding, while NIS2 implementation moves through the Bundestag and experts warn of persistent coordination gaps.