Development of the banks' financial situation over the last years
GénéralCSSF Publicationsil y a 10 jours
Situation as at 31 December 2025
Flux RSS
— Sources secondaires101articles RSS
ReinitialiserWarning concerning persons misusing the name of the Chair of the CSSF Board
Gouvernance & RégulationCSSF Publicationsil y a 10 jours
(first publication: 30 October 2024)
Development of the bank's balance sheet total
GénéralCSSF Publicationsil y a 10 jours
Situation as at 31 December 2025
Quarterly development of employment in banks
GénéralCSSF Publicationsil y a 10 jours
Situation as at 31 December 2025
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
Malware & RansomwareKrebs on Securityil y a 10 jours
The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million hacked Internet of Things (IoT) devices, such as routers and web cameras. The feds say the four botnets -- named Aisuru, Kimwolf, JackSkid and Mossad -- are responsible for a series of recent record-smashing distributed denial-of-service (DDoS) attacks capable of knocking nearly any target offline.
List of members of the Investment Fund Managers Committee (Updated)
GénéralCSSF Publicationsil y a 10 jours
Register of EU/EEA Mortgage Credit Intermediaries operating in Luxembourg under the freedom to provide services in accordance with the Mortgage Credit Directive 2014/17/EU (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 10 jours
Unknown attackers exploit yet another critical SharePoint bug
Gouvernance & RégulationThe Register Securityil y a 10 jours
Last time: Beijing-backed snoops and ransomware crims. Who's next? Unknown baddies are abusing yet another critical Microsoft SharePoint bug to compromise victims' SharePoint servers, the US government warned.…
Google gives Android users a way to install unverified apps if they prove they really, really want to
Gouvernance & RégulationThe Register Securityil y a 10 jours
Chocolate Factory describes concession as an attempt to balance openess with safety It turns out you won't be limited to Google-verified apps and developers on Android after all. In the face of sustained community dissatisfaction with its developer verification requirement, Google has given Android users an out.…
Lock down Microsoft Intune, feds warn after Stryker attack
Outils & RechercheThe Register Securityil y a 10 jours
Iran-linked attackers wiped employees' devices using Intune The US government has urged companies to better secure Microsoft Intune, an endpoint management tool that was abused in last week's cyberattack against med-tech firm Stryker.…
Communication regarding management notifications and de-notifications with a European passport for Luxembourg-domiciled IFMs
GénéralCSSF Publicationsil y a 10 jours
Notification form for updating payment institutions/electronic money institutions information
GénéralCSSF Publicationsil y a 11 jours
Legal department - Consumer protection / financial crime (Updated)
GénéralCSSF Publicationsil y a 11 jours
Out-of-court consumer complaint resolution
Okta made a nightmare micromanager for your AI agents
Gouvernance & RégulationThe Register Securityil y a 11 jours
Where are you? What are you working on? Why are you doing that? Identity access and management platform Okta announced the general availability of its Okta for AI Agents, which will give customers the ability to do three things: locate agents, see what they’re doing, and shut them down if need be.…
State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns
Gouvernance & RégulationThe Register Securityil y a 11 jours
Darksword is the second iOS exploit chain in a month A new exploit kit targeting iPhone users and stealing their sensitive data is being abused by "multiple" spyware vendors and suspected nation-state goons, security researchers said on Wednesday.…
Ransomware crims abused Cisco 0-day weeks before disclosure, says Amazon security boss
Gouvernance & RégulationThe Register Securityil y a 11 jours
Interlock's post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses.…
North Korea's 100,000-strong fake IT worker army rake in $500M a year for Kim Jong Un
Vulnérabilités & PatchesThe Register Securityil y a 11 jours
Researchers map full org chart of the scam from dodgy recruiters to helpful Western collaborators Researchers at IBM X‑Force and Flare Research have uncovered data that sheds light on how North Korea's fake IT worker schemes operate and infiltrate companies in order to funnel money back to the regime and steal sensitive information.…
Britain's satellite-watching gap to be plugged with £17.5M eyeball in Cyprus
Gouvernance & RégulationThe Register Securityil y a 11 jours
No 1 Space Operations Squadron will get a persistent stare capability The Ministry of Defence (MoD) plans to spend £17.5 million on a remotely-operated satellite monitoring facility in Cyprus, partly to protect the UK's secure communications system Skynet.…
Circular letter
GénéralCSSF Publicationsil y a 11 jours
Latest update on the AML/CFT standardised data collection
Iran's cyberattack against med tech firm is 'just the beginning'
GénéralThe Register Securityil y a 12 jours
Even without a navy, or air power, 'They'll still have the ability to hack' Businesses should expect that Iran will conduct more aggressive cyber-ops as the war escalates, according to security analysts.…