⚠ NCSC: Week 25: Fake voice messages spread malware and target login details 🔴 CVE: CVE-2026-49201 (CVSS 9.8) — The upload.cgi binary, responsible for processing device backups, contains a … 📰 New article: NCSC Mandatory Cyber Reporting: Swiss ISA Enforcement 2026 ⚠ NCSC: Week 25: Fake voice messages spread malware and target login details 🔴 CVE: CVE-2026-49201 (CVSS 9.8) — The upload.cgi binary, responsible for processing device backups, contains a … 📰 New article: NCSC Mandatory Cyber Reporting: Swiss ISA Enforcement 2026
Regulation 10 articles
All 53 Threat Intel 14 Regulation 10 Best Practices 10 Incident Report 9 Analysis 10
Regulation21 June 20268 min read

NCSC Mandatory Cyber Reporting: Swiss ISA Enforcement 2026

Switzerland's ISA transitional period for mandatory cyber reporting ends mid-2026. Swiss operators must validate their NCSC 24-hour notification pipelines now.

by Marco ScaritoRead article →
Regulation15 June 202610 min read

Swiss KRITIS-G and EU NIS2 Revision: CISO Guide 2026

Switzerland's KRITIS-G and the EU NIS2 revision advance in parallel. Swiss operators must navigate both legislative tracks to avoid compliance gaps by 2027.

by Marco ScaritoRead article →
Regulation31 May 20268 min read

DORA First TLPT Cycle: Swiss Financial Entity Guide 2026

The first mandatory TLPT cycles under DORA begin in 2026. Swiss banks and insurers with EU subsidiaries must prepare for TIBER-EU-aligned testing now.

by Marco ScaritoRead article →
Regulation10 May 20269 min read

EU AI Act August 2026: Swiss High-Risk AI Compliance

The EU AI Act's August 2026 deadline for high-risk systems is 83 days away. Swiss operators face fines up to 7% for non-compliant AI exports.

by Marco ScaritoRead article →
Regulation10 May 20269 min read

EU Digital Omnibus: Single Incident Reporting Point Simplifies Process But Leaves Compliance Complexity Intact

The EU Digital Omnibus proposes one portal for NIS2, DORA, GDPR and CER notifications — but different thresholds and timelines remain unchanged. Swiss firms must plan accordingly.

by Marco ScaritoRead article →
Regulation28 April 20269 min read

Switzerland's Cyber Products Law: What the Federal Council's Draft Bill Means for Swiss Tech Companies

Switzerland's Federal Council is drafting a new cyber products law by autumn 2026, mirroring the EU Cyber Resilience Act. What Swiss manufacturers, importers, and software vendors must prepare for now.

by Marco ScaritoRead article →
Regulation7 April 202611 min read

The EU Cyber Resilience Act's First Deadline Is in Five Months — Are Swiss Manufacturers Ready?

The EU Cyber Resilience Act's first mandatory deadline — vulnerability and incident reporting obligations — takes effect on 11 September 2026. Swiss manufacturers exporting digital products to the EU have five months to build compliant processes.

by Marco ScaritoRead article →
Regulation23 March 202610 min read

Digital Omnibus Enters Trilogue: What Swiss Compliance Teams Must Do Before the Final Text Lands

EU Digital Omnibus heads into trilogue: what Swiss compliance teams should do now on GDPR, AI Act, NIS2, and DORA before the final text lands.

by Marco ScaritoRead article →
Regulation23 March 202610 min read

The EU Digital Omnibus: What Swiss Organisations Must Understand Now

On 19 November 2025, the European Commission published the Digital Omnibus.

by Marco ScaritoRead article →
Regulation12 March 20256 min read

nDSG Compliance in 2025: What Swiss Companies Still Get Wrong

The revised nDSG is now in force. Persistent blind spots: incomplete records of processing activities.

by Marco ScaritoRead article →