Take control of your finances, one step at a time
GénéralCSSF Publicationsavant-hier
Flux RSS
— Sources secondaires74articles RSS
ReinitialiserDevelopment of the balance sheet total and provisional net results of specialised PFS
GénéralCSSF Publicationsil y a 3 jours
Situation as at 28 February 2026
GitHub adds AI-powered bug detection to expand security coverage
Gouvernance & RégulationBleepingComputeril y a 3 jours
GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static analysis and cover more languages and frameworks. [...]
PolyShell attacks target 56% of all vulnerable Magento stores
Vulnérabilités & PatchesBleepingComputeril y a 3 jours
Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are underway, targeting more than half of all vulnerable stores. [...]
Bubble AI app builder abused to steal Microsoft account credentials
Threat IntelligenceBleepingComputeril y a 3 jours
Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building platform Bubble to generate and host malicious web apps. [...]
New Torg Grabber infostealer malware targets 728 crypto wallets
Malware & RansomwareBleepingComputeril y a 3 jours
A new info-stealing malware called Torg Grabber is stealing sensitive data from 850 browser extensions, more than 700 of them for cryptocurrency wallets. [...]
Citrix urges admins to patch NetScaler flaws as soon as possible
Gouvernance & RégulationBleepingComputeril y a 3 jours
Citrix has patched two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is very similar to the CitrixBleed and CitrixBleed2 flaws exploited in zero-day attacks in recent years. [...]
Paid AI Accounts Are Now a Hot Underground Commodity
GénéralBleepingComputeril y a 3 jours
AI accounts are becoming part of the cybercrime supply chain, sold like email accounts or VPS access. Flare Systems shows how underground markets bundle and resell premium AI access at scale. [...]
Circulaire CSSF 26/908 : Modification de la circulaire CSSF 18/703 sur le reporting semestriel des indicateurs immobiliers résidentiels
Gouvernance & RégulationCSSF Publicationsil y a 3 jours
La CSSF a mis à jour le 25 mars 2026 la circulaire CSSF 18/703 concernant le reporting semestriel des indicateurs liés aux emprunteurs pour l'immobilier résidentiel. Cette modification vise à adapter les exigences de déclaration pour les institutions financières luxembourgeoises. Impact direct sur les processus de reporting des entités supervisées.
How one man used 10,000 bots to steal $8,000,000 from music artists
GénéralGraham Cluleyil y a 3 jours
A man has pleaded guilty to defrauding online music streaming platforms out of more than US $8 million, after creating hundreds of thousands of songs with AI, and then using bots to play them billions of times. Read more in my article on the Hot for Security blog.
Technical FAQ on CSSF Regulation No 20-08 on borrower-based measures for residential real estate credit (track changes) (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 4 jours
Version of 9 March 2026
Circular CSSF 18/703 (as amended by Circulars CSSF 20/737, 21/772 and 26/908) (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 4 jours
on the introduction of a semi-annual reporting of borrower-related residential real estate indicators
CSSF Newsletter No 302 – March 2026
Gouvernance & RégulationCSSF Publicationsil y a 4 jours
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
Gouvernance & RégulationKrebs on Securityil y a 5 jours
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran's time zone or have Farsi set as the default language.
Mr Davy Reinard sworn in by the Minister of Finance as Director Resolution (only in French)
GénéralCSSF Publicationsil y a 5 jours
Press release 26/07
Denver’s crosswalks hacked to broadcast anti-Trump messages
GénéralGraham Cluleyil y a 8 jours
Pedestrians crossing a street in Denver, Colorado, got rather more than they bargained for last weekend, when the audio signals at two crosswalks began broadcasting a political message alongside their usual walking instructions. Read more in my article on the Hot for Security blog.
LeakNet ransomware: what you need to know
Malware & RansomwareGraham Cluleyil y a 8 jours
A ransomware gang that claims to be a group of "investigative journalists"? Meet LeakNet - the group using fake CAPTCHA pages to trick employees into hacking themselves. Read more in my article on the Fortra blog.
Development of the banks' financial situation over the last years
GénéralCSSF Publicationsil y a 9 jours
Situation as at 31 December 2025
Warning concerning persons misusing the name of the Chair of the CSSF Board
Gouvernance & RégulationCSSF Publicationsil y a 9 jours
(first publication: 30 October 2024)
Development of the bank's balance sheet total
GénéralCSSF Publicationsil y a 9 jours
Situation as at 31 December 2025