Cybersecurity 2024: synaforce Reflects

7 min read

In its annual report on the state of cybersecurity in Germany, the BSI has once again released record-breaking figures. As a result, the threat landscape for German companies remains persistently high. synaforce looks back on an eventful year that, alongside numerous challenges, also brought several successes.

What is Cybersecurity?

Cybersecurity is a concrete priority for companies in 2026 because it directly shapes scalable data center capacity, energy efficiency and compliance. This article uses synaforce as an example to show which requirements, figures and operational steps matter in practice.

The Most Important Points in Brief

According to the IT Security Situation Report by the Federal Office for Information Security (BSI), approximately 309,000 new malware variants were identified daily in 2024, representing a 26 percent rise compared with the previous year. Attacks targeting cloud systems, critical infrastructure (KRITIS), and mobile devices were particularly prominent. At the same time, cybercriminals further professionalized their methods, exploiting zero-day vulnerabilities and increasingly relying on modular attack tools such as Malware-as-a-Service. Another significant factor influencing the threat landscape was advancements in artificial intelligence. Generative AI has made cyberattacks easier by, for example, creating convincingly realistic phishing messages, writing malicious code, or cracking passwords.

Regulatory developments also played a crucial role. The NIS2 Directive, which establishes higher cybersecurity standards for critical sectors, was scheduled to be implemented into German law by October 2024. However, as of December 2024, the corresponding legislation had not yet been enacted, thereby maintaining uncertainty for businesses.

synaforce positions itself in 2024 as a trusted partner for advanced cybersecurity solutions

In 2024, synaforce took decisive steps to strengthen its position as a provider of cutting-edge IT security solutions. The goal was to offer customers comprehensive and secure services while aligning its own systems with growing challenges. A key milestone was the C5 certification by the BSI in March 2024. This certification confirms that synaforce’s cloud services meet the highest security standards and are particularly suitable for KRITIS clients.

In addition, synaforce proactively prepared for the implementation of the NIS2 Directive. Its existing certification base-including ISO/IEC 27001, ISAE 3402, and EN 50600-was further reinforced by the C5 certification. As a result, synaforce is now equipped to help companies comply with the tightened EU-wide minimum standards.

A further highlight was the strategic partnership with TEHTRIS. Together, the two companies launched the TEHTRIS XDR AI PLATFORM, a state-of-the-art, AI-powered security solution. It monitors all endpoints, networks, and cloud services in real time and centrally manages all security measures via an intuitive dashboard. Companies benefit from holistic protection, compliance assurance, as well as the solution’s modularity and flexibility. Managed service providers can use it to enhance the efficiency of their security offerings and processes, expanding their service portfolio to include proactive managed detection and response (MDR) without having to invest in costly cybersecurity infrastructure themselves.

“We are proud of what we achieved in 2024. However, the threat landscape underscores just how important it is to consistently expand our position. 2025 will be another year of progress for us, as we further intensify our commitment to cybersecurity.”
– Tobias Lehner, CTO of synaforce, on the 2024 year-end review

What Awaits Companies in 2025

Indeed, 2025 will present even greater challenges for the IT security landscape. Cybercriminals are increasingly leveraging deepfake technologies to bypass voice recognition systems during verification processes, for example. Industries such as the financial sector now face the task of developing new defense strategies to protect themselves against these advanced deception techniques.

Moreover, Advanced Persistent Threats (APTs) are once again gaining significant attention. These threats are characterized by their long-term persistence and high level of precision, making them a serious risk to organizations by granting attackers prolonged access to valuable data. Critical Infrastructure Sector (KRITIS) companies are increasingly becoming targets.

In addition to these technological challenges, uncertainty remains regarding the final form of the NIS2 Directive. Although the deadline for implementing this EU-wide regulation has already passed, the legislative process in Germany is still delayed. Rather than waiting for clarity on the legal framework, companies should take proactive measures-such steps will remain crucial in 2025 for maintaining secure IT systems.

“The threat landscape was already immense in 2024, and it’s unlikely to improve in 2025. Our collective resilience will be key to addressing these ever-more complex dangers. The implementation of the NIS2 Directive plays a vital role here. At synaforce, we actively support businesses through comprehensive consulting services, as well as the planning and execution of targeted measures aimed at minimizing cyber risks and establishing sustainable security strategies,” says Andreas Braidt, CEO of synaforce.

What the C5 Certification Specifically Means

BSI-C5, the Cloud Computing Compliance Criteria Catalogue, is a comprehensive audit framework comprising 17 thematic areas developed by Germany’s BSI (Federal Office for Information Security). It systematically assesses cloud service providers across technical, organizational, and procedural security controls. A C5 attestation is therefore more than just a seal of approval; it constitutes an independent audit report prepared in accordance with the international auditing standard ISAE 3000, transparently documenting sub-service providers, data flows, and control mechanisms.

For clients operating in regulated industries such as finance, healthcare, or public administration, a C5-certified cloud partner often represents a fundamental prerequisite for engaging their services. This significantly simplifies internal compliance documentation, as many audit requirements are already satisfied through the attestation. For synaforce, certification opens direct market access to customer segments that would otherwise have been systematically excluded without C5. At the same time, the company distinguishes itself within Germany’s SME sector from competitors who either lack the resources or are unwilling to undertake the rigorous C5 audit process.

XDR and Managed Detection and Response as Growth Areas

The partnership with TEHTRIS addresses one of the strongest trends in the cybersecurity market: the consolidation of isolated security tools into Extended Detection and Response platforms. Rather than separate endpoint detection, network monitoring, and cloud security solutions each with their own user interface, XDR provides a centralized view across all attack vectors. For MSPs, this represents an efficiency gain; for end customers, it leads to a higher detection rate for complex threats.

Managed Detection and Response takes this a step further. Here, a specialized service provider not only supplies the tools but also assumes operational responsibility for security monitoring. 24-hour monitoring, incident response, and threat hunting are delivered as a service. For companies that cannot operate their own Security Operations Centers, this is often the only cost-effective option to achieve the same level of security as large corporations within their own organizations. With its partnership with TEHTRIS, synaforce is positioning itself in this growth area, thereby opening up new revenue and growth opportunities within its network of managed service providers.

What KRITIS Companies Must Concretely Implement in 2025

For companies classified as critical infrastructure, the combination of NIS2, the BSI Act, and DORA creates a dense regulatory framework. Specifically, KRITIS operators must ensure the following by 2025: documented ICT risk management, formalized incident-response processes with reporting deadlines, regular resilience tests, and proactive third-party risk management. The effort required is substantial, and implementation can take several months to years.

Many medium-sized enterprises underestimate the organizational aspect. In modern regulations, IT security is no longer solely a technical issue but rather a governance task at the executive level. Anyone who still believes that deploying a firewall and conducting an annual penetration test will make them compliant with DORA or NIS2 is fundamentally mistaken. The new regulations demand end-to-end process documentation, clear roles and responsibilities, and evidence of a living security culture.

Why Compliance Certifications Are Becoming Market Access Requirements

A frequently underestimated side effect of the regulatory wave is that compliance certifications are increasingly becoming prerequisites for market access. Companies that enter public tenders without BSI C5, ISO 27001, and documented NIS2 readiness systematically end up in lower rankings. Even in private procurement processes conducted by large corporations, proof of security measures is increasingly being demanded as a mandatory criterion.

For mid-sized IT service providers, this presents a clear strategic decision point. They can either actively pursue the relevant certifications and position themselves as having a competitive advantage, or they will gradually be pushed out of high-margin customer segments. synaforce has chosen precisely this path with its investment in the C5 certification, positioning itself as a provider that not only meets regulatory requirements but also actively leverages them as a differentiating factor. For its customers, synaforce thus becomes a partner that mitigates compliance risks rather than exacerbating them.

Deepfake Protection as a New Area of Action

Among the threats expected in 2025, deepfake-based social-engineering attacks hold a special position. Unlike traditional phishing attacks, they do not rely solely on manipulated text messages; instead, they employ deceptively realistic voices and videos. Examples from 2024 demonstrate that attackers were able to convince CFOs-using AI-generated voices-to transfer multi-million sums to third-party accounts. These attacks bypass conventional two-factor authentication because they exploit interpersonal trust.

Defensive strategies require a combination of technical and organizational measures. Out-of-band verification for sensitive transactions, documented approval processes based on the principle of multiple oversight, ongoing awareness training, and the deployment of detection tools for synthetic media have become standard practice. For MSPs, this presents an additional consulting area that extends beyond traditional IT security and deeply integrates into clients’ processes and communication protocols.

Looking Ahead

The threat landscape in 2024 reached record levels, and it is widely expected to surpass those figures in 2025. At the same time, however, defensive tools, regulatory frameworks, and specialized service providers are becoming increasingly mature. For German companies, this creates a clear alternative to purely reactive damage control: a structured combination of certified infrastructure, modern XDR platforms, and experienced consulting partners. By establishing this combination early on, organizations can not only mitigate risks but also gain competitive advantages with customers and regulatory authorities. synaforce embarked on this path in 2024 and will continue to pursue it consistently through 2025 and 2026.

IT decision-makers in small and medium-sized enterprises as well as in critical infrastructure environments are advised to conduct an annual self-assessment based on four key questions: What is the current maturity level of your security architecture? Which certifications are still missing? Which third-party service providers are critical to your operations? And who will bear operational and legal responsibility in the event of a cyber incident? The answers to these four questions will significantly determine your organization’s future competitiveness in a regulatory environment that is evolving much more rapidly than many established internal security roadmaps currently anticipate.

Frequently Asked Questions

Image source: Pixabay / BrianPenny