Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
Gouvernance & RégulationDark Readingil y a 8 jours
Attackers can execute arbitrary code without authentication if Oracle's Identity or Web Services Managers are exposed to the Web.
Flux RSS
— Sources secondaires91articles RSS
ReinitialiserCyber OpSec Fail: Beast Gang Exposes Ransomware Server
Malware & RansomwareDark Readingil y a 8 jours
Files on a central cloud server used by the ransomware group highlight a systematic, aggressive attack on network backups as a key TTP.
Interlock Ransomware Targets Cisco Enterprise Firewalls
Vulnérabilités & PatchesDark Readingil y a 8 jours
The ransomware gang, known for double-extortion attacks, had access to a critical Cisco firewall vulnerability weeks before it was publicly disclosed.
Development of the banks' financial situation over the last years
GénéralCSSF Publicationsil y a 9 jours
Situation as at 31 December 2025
Warning concerning persons misusing the name of the Chair of the CSSF Board
Gouvernance & RégulationCSSF Publicationsil y a 9 jours
(first publication: 30 October 2024)
Development of the bank's balance sheet total
GénéralCSSF Publicationsil y a 9 jours
Situation as at 31 December 2025
Quarterly development of employment in banks
GénéralCSSF Publicationsil y a 9 jours
Situation as at 31 December 2025
List of members of the Investment Fund Managers Committee (Updated)
GénéralCSSF Publicationsil y a 9 jours
Register of EU/EEA Mortgage Credit Intermediaries operating in Luxembourg under the freedom to provide services in accordance with the Mortgage Credit Directive 2014/17/EU (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 9 jours
AI Conundrum: Why MCP Security Can't Be Patched Away
Vulnérabilités & PatchesDark Readingil y a 9 jours
RSAC Conference Preview: MCP introduces security risks into LLM environments that are architectural and not easily fixable, researcher says.
With Government's Role Uncertain, Businesses Unite to Combat Fraud
GénéralDark Readingil y a 9 jours
Major industry leaders agree to share information and collaborate to boost defenses in the wake of distressing online scams.
Native Launches With Security Control Plane for Multicloud
Vulnérabilités & PatchesDark Readingil y a 9 jours
The cloud security startup's platform translates and enforces security policies across AWS, Azure, Google Cloud, and Oracle using provider-native controls.
Post-Quantum Web Could be Safer, Faster
Threat IntelligenceDark Readingil y a 9 jours
Major providers are testing a quantum-safe version of HTTPS that shrinks certificates to one-tenth their previous size, decreasing latency and adding transparency.
Communication regarding management notifications and de-notifications with a European passport for Luxembourg-domiciled IFMs
GénéralCSSF Publicationsil y a 9 jours
Notification form for updating payment institutions/electronic money institutions information
GénéralCSSF Publicationsil y a 9 jours
EU Sanctions Companies in China, Iran for Cyberattacks
GénéralDark Readingil y a 10 jours
These rulings prohibit the entities from entering or doing business in the European Union.
Legal department - Consumer protection / financial crime (Updated)
GénéralCSSF Publicationsil y a 10 jours
Out-of-court consumer complaint resolution
C2 Implant 'SnappyClient' Targets Crypto Wallets
Gouvernance & RégulationDark Readingil y a 10 jours
In addition to enabling remote access, the malware supports a wide range of capabilities, including data theft and spying.
DarkSword: iPhone Exploit Kit Serves Spies & Thieves Alike
Gouvernance & RégulationDark Readingil y a 10 jours
A sophisticated iOS exploit chain leverages multiple zero-day vulnerabilities and is targeting users in Saudi Arabia, Turkey, Malaysia, and Ukraine.
'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft
Gouvernance & RégulationDark Readingil y a 10 jours
A prompt injection vulnerability paired with other flaws can turn a Google search into a full attack chain that could threaten enterprise networks.