Wow look at this issued by the European Network and Information Security Agency (ENISA)! Thanks Ralf!