QRTrust Logo
Don't trust every QR code.
Back to blog
Security

New: BSI Report Template for Quishing Incidents - NIS-2 Compliant Incident Reporting

6 min read

QRTrust now offers an automatic BSI report template for quishing incidents. Generate NIS-2 compliant incident reports with one click - including deadline tracking, IoC documentation, and direct link to the BSI reporting portal.

With the NIS-2 Implementation Act coming into force on December 5, 2025, companies are required to report significant security incidents to the BSI within 24 hours. QRTrust Enterprise makes this obligation easier: An automatically generated BSI report template is now available for both administrators and customers.

The Problem: Complex Reporting Obligations Under Time Pressure

When a quishing attack is detected, the clock is ticking: According to NIS-2, the initial report must be submitted within 24 hours, a detailed report after 72 hours, and a final report after one month.

Many companies face the challenge: Which form is correct? What needs to be reported? What technical details does the BSI need? The new QRTrust BSI report template answers all these questions automatically.

The Solution: Automatic BSI Report Template

QRTrust generates a complete, pre-filled BSI report for every detected quishing incident with all relevant information:

NIS-2 Deadline Tracking

Automatic calculation of 24h/72h/1-month deadlines with traffic light status display

Indicators of Compromise (IoC)

Phishing URL, domain, SHA-256 hashes of screenshots and archives

Multilingual Reports

German and English report templates as well as JSON for API integration

BSI Portal Integration

Direct link to the correct BSI form (Alliance for Cyber Security)

Important: Use the Correct BSI Form

A common mistake: Many companies confuse the CVD form (Coordinated Vulnerability Disclosure) with the security incident report form.

Quishing is NOT a CVD Case!

Quishing attacks are security incidents, not vulnerability reports. Use the 'Alliance for Cyber Security' form, not the CVD form.

QRTrust automatically links to the correct form and ensures your report goes to the right place.

Available for Customers

The BSI report template is not only available for administrators but also directly in the customer portal. Every customer can generate reports for their incidents and submit them to the BSI themselves.

The template appears in the incident detail directly under 'Forensic Evidence' and contains all relevant data automatically pre-filled.

Technical Details

  • Automatic incident ID and timestamp
  • GPS coordinates of QR code location (if available)
  • Screenshot and web archive SHA-256 hashes
  • Impersonated brand and confidence score
  • Copy & download in TXT and JSON format

Try It Now

The BSI report template is now available in QRTrust Enterprise. Contact us for a demo or start directly with your first quishing report.

Schedule Demo

About QRTrust

QRTrust is the leading platform for QR code security in Germany. With advanced AI technology, we protect businesses and consumers from quishing attacks and support NIS-2 compliance.

Back to blog