Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
Gouvernance & RégulationDark Readingil y a 11 jours
Attackers can execute arbitrary code without authentication if Oracle's Identity or Web Services Managers are exposed to the Web.
Flux RSS
— Sources secondaires120articles RSS
ReinitialiserCyber OpSec Fail: Beast Gang Exposes Ransomware Server
Malware & RansomwareDark Readingil y a 11 jours
Files on a central cloud server used by the ransomware group highlight a systematic, aggressive attack on network backups as a key TTP.
Interlock Ransomware Targets Cisco Enterprise Firewalls
Vulnérabilités & PatchesDark Readingil y a 11 jours
The ransomware gang, known for double-extortion attacks, had access to a critical Cisco firewall vulnerability weeks before it was publicly disclosed.
Proton Mail Shared User Information with the Police
GénéralSchneier on Securityil y a 11 jours
404 Media has a story about Proton Mail giving subscriber data to the Swiss government, who passed the information to the FBI. It’s metadata—payment information related to a particular account—but still important knowledge. This sort of thing happens, even to privacy-centric companies like Proton Mail.
Development of the banks' financial situation over the last years
GénéralCSSF Publicationsil y a 11 jours
Situation as at 31 December 2025
Warning concerning persons misusing the name of the Chair of the CSSF Board
Gouvernance & RégulationCSSF Publicationsil y a 11 jours
(first publication: 30 October 2024)
Development of the bank's balance sheet total
GénéralCSSF Publicationsil y a 11 jours
Situation as at 31 December 2025
Quarterly development of employment in banks
GénéralCSSF Publicationsil y a 11 jours
Situation as at 31 December 2025
List of members of the Investment Fund Managers Committee (Updated)
GénéralCSSF Publicationsil y a 11 jours
Register of EU/EEA Mortgage Credit Intermediaries operating in Luxembourg under the freedom to provide services in accordance with the Mortgage Credit Directive 2014/17/EU (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 11 jours
AI Conundrum: Why MCP Security Can't Be Patched Away
Vulnérabilités & PatchesDark Readingil y a 11 jours
RSAC Conference Preview: MCP introduces security risks into LLM environments that are architectural and not easily fixable, researcher says.
With Government's Role Uncertain, Businesses Unite to Combat Fraud
GénéralDark Readingil y a 12 jours
Major industry leaders agree to share information and collaborate to boost defenses in the wake of distressing online scams.
Native Launches With Security Control Plane for Multicloud
Vulnérabilités & PatchesDark Readingil y a 12 jours
The cloud security startup's platform translates and enforces security policies across AWS, Azure, Google Cloud, and Oracle using provider-native controls.
Post-Quantum Web Could be Safer, Faster
Threat IntelligenceDark Readingil y a 12 jours
Major providers are testing a quantum-safe version of HTTPS that shrinks certificates to one-tenth their previous size, decreasing latency and adding transparency.
Communication regarding management notifications and de-notifications with a European passport for Luxembourg-domiciled IFMs
GénéralCSSF Publicationsil y a 12 jours
Hacking a Robot Vacuum
GénéralSchneier on Securityil y a 12 jours
Someone tries to remote control his own DJI Romo vacuum, and ends up controlling 7,000 of them from all around the world. The IoT is horribly insecure, but we already knew that.
Notification form for updating payment institutions/electronic money institutions information
GénéralCSSF Publicationsil y a 12 jours
EU Sanctions Companies in China, Iran for Cyberattacks
GénéralDark Readingil y a 12 jours
These rulings prohibit the entities from entering or doing business in the European Union.
Legal department - Consumer protection / financial crime (Updated)
GénéralCSSF Publicationsil y a 12 jours
Out-of-court consumer complaint resolution
C2 Implant 'SnappyClient' Targets Crypto Wallets
Gouvernance & RégulationDark Readingil y a 12 jours
In addition to enabling remote access, the malware supports a wide range of capabilities, including data theft and spying.