People can read on their own that it is about the BSI, contrary to your propaganda. Go back to the Spiegel or Zeit forums, where Russian trolls usually spend their time.
I had the same confusion in the beginning. The BSI is responsible to fix the infrastructure, to report on the problem, etc. You might not be aware of the discussion regarding the Federal Office for the Protection of the Constitutions involvement.
Not sure about your agenda and why you spill inaccuracies and distort what articles say with a tendency to promote Russian SWR goals.
1. The problem arose because the parliamentarians did not use experts from the BSI but have no clue but do it on their own with their own people. The BSI protected government network is not affected.
2. The German interior intelligence agency is not "involved" as you put it - what agenda do you have? - the article says parliamentarians need to decide if they want to ask the counterespionage department of the German interior intelligence agency, what some don't want.
1. People want to work, and I assume the 'productivity' of politicians (meaning "we don't want security") brought this in the first place.
2. If sophisticated, the outflow of information might be with a mobile device plugged in, or other means to jump the air gap when ethernet is disconnected.
Without denying the currently very present principal–agent problem between parliamentarians and the statefunded intelligence community all other claims seem sappy to me.
I bet they earned your trust for a reason. Nevertheless it should be the decision of the specific MP to assign IT responsibilities for the own hardware/software.
The German BSI is not part of the "intelligence community" and is not an intelligence agency, no matter how often you repeat your conspiracy theory. To spare everyone the trip to Wikipedia:
"The Federal Office for Information Security (German: Bundesamt für Sicherheit in der Informationstechnik, abbreviated as BSI) is the German Upper-level Federal agency in charge of managing computer and communication security for the German government. Its areas of expertise and responsibility include the security of computer applications, critical infrastructure protection, Internet security, cryptography, counter eavesdropping, certification of security products and the accreditation of security test laboratories."
Pretending the BSI has no connection to the intelligence community is just as disingenuous as pretending they are an intelligence agency themselves. Just going by your quote, many of their tasks are in the domain of counter-intelligence.
Beyond that, they are also responsible for the (quite unenviable) tasks of certifying/auditing the intelligence services IT infrastructure, not just in terms of security but also in terms of whether it stays within the bounds of the laws limiting what can be recorded and shared. From what was revealed in the parliamentary hearings prompted by Edward Snowden's leaks, they didn't do a very thorough job.
Some years ago there was some press about how many German politicians were complaining about the state phones and would bring in and use their own shiny phones, probably this goes for laptops too. I assume this was against the wishes of IT security. Then boom, and the politicians are complaining again.
Everyone is collecting user data for targeting and segmentation in marketing. Not sure Tim Cook knows everything that is going on at Apple. I've worked directly with several CEOs of larger companies and none new everything that was going on.
It's always an opportunity to sell to someone how is desperate and has deep pockets, especially when you're currently looking for an exit. Minecraft, Wunderlist, ...
Even if I use mercurial in my Docker image to get my app and not prepackage it (what I do), and I know this is about public images, how is this "high" vulnerability? I don't deny it's one I would just like to learn why it is classified high if e.g. I use Docker for my HAProxy.
