In 2015 the German Bundestag was attack - most certainly by a Russian hacking group. A combination of social engineering and trojan malware opened the door and allowed attackers to extract official documents of members of parliament, their parliamentary groups as well as the parliament’s administration. All of this, unrecognized – possibly over weeks. This article shows why the pain is not not gone and likely to return.