The current crisis around COVID-19 was quickly exploited by cyber criminals for attacks on companies. In a general climate of uncertainty and fear, these attacks have often been aimed at employees. The European Cyber Security Agency ENISA reported an increase of 600% in phishing emails in the first weeks after the outbreak of the virus. Interpol, amongst others, anticipates a further aggravation of cyber threats, especially in the area of critical infrastructure. At the same time and as a result of the situation, many companies were forced to rapidly digitalize their processes and introduce new tools at a moment’s notice - with implications for IT security. Data and information must now also be securely processed in the home office and new types of remote tools are being used by many empl ...