On the current debates in connection with the cyber attack “WannaCry” last weekend, Prof. Norbert Pohlmann, eco Director for IT Security, says:
“The calls from German ministries and parties for legislative measures are too short-sighted and offer no solution. What we need instead is consistent IT security management – on the part of the state, as well as companies and private households. This also means a clear rejection of so-called ZeroDay Exploits. As long as secret services and security agencies like the NSA and the BND do not report existing vulnerabilities to vendors, but instead use them to spy on citizens, cyber attacks that could easily be prevented will continue to occur.
In addition, IT security needs to be given strategic relevance in companies. With increasing digitalization and interconnection, IT security is no longer a “nice-to-have” for many business models, but a central requirement for successful business activities and sustainable digitalization – this is the case, regardless of the industry or the size of the company. A cyber security strategy that raises the sensitivity and awareness of citizens and companies for the topic is only of value if citizens, companies and the federal government work together.”