BSI Management Report on IT Security in Germany 2020: Danger especially from Emotet

According to the Federal Office for Information Security (BSI), the current threat situation in Germany remains "tense". In the reporting period, Emotet posed a major threat to authorities, companies and society.

BSI Management Report

The importance of IT solutions and systems is increasing continuously, not only for companies but also in public authorities. The global pandemic Corona has only acted as an accelerator here. The more IT is used, the more vulnerable companies become, but also the state and ultimately the citizens. In its "Report on the state of IT security in Germany in 2020", the Federal Office for Information Security (BSI) has repeatedly emphasized the importance of functioning, fail-safe and resilient IT infrastructures for the functioning of societies. Cybersecurity by Design should "therefore be a focal point in all digitization projects," as stated in the foreword to the report.

The current report covers the reporting period from June 1, 2019 to May 31, 2020, but also addresses events after that date. The report states the "continuation of a trend", according to which malware is in Use for cyber-criminal mass attacks on private individuals, companies and organizations. There are outflows of personal data such as patient data, as well as critical vulnerabilities in software and hardware products.

New malware variants appeared in waves from the fourth quarter to the first quarter of the New Year. According to the BSI, the fact that these are less threatening compared to earlier periods is due to new variants of Emotet and at the same time marks a change in the attackers' methods. Attacks by malware are becoming more and more sophisticated and targeted.

  • In 2020, there were 419 reports of incidents in critical infrastructures, including the energy and health sectors.
  • In 2019, there were 252 reports,
  • In 2018, 145 incidents listed.

73 of the incidents reported in the current management report related to the electricity supply. 65 reports reached the office from the finance and insurance sector. However, according to the BSI, not all problems were caused by attacks. In the health sector in particular, a large proportion of the problem cases were due to "technical failures".

Request information

Do you have questions or need additional information? Simply fill out this form and we will get right back to you.

I want to receive information from Rohde & Schwarz via

Marketing permission

What does this mean in detail?

I agree that Rohde & Schwarz GmbH & Co. KG and the Rohde & Schwarz entity or subsidiary company mentioned in the imprint of this website, may contact me via the chosen channel (email or postal mail) for marketing and advertising purposes (e.g. information on special offers and discount promotions) related to, but not limited to, products and solutions in the fields of test and measurement, secure communications, monitoring and network testing, broadcast and media, and cybersecurity.

Your rights

This declaration of consent may be withdrawn at any time by sending an email with the subject "Unsubscribe" to Additionally, a link to unsubscribe from future email advertisements is contained in each email sent. Further details on the use of personal data and the withdrawal procedure are set out in the Statement of Privacy.

Your request has been sent successfully. We will contact you shortly.
An error is occurred, please try it again later.