Warning concerning persons misusing the name of the Chair of the CSSF Board
Gouvernance & RégulationCSSF Publicationsil y a 10 jours
(first publication: 30 October 2024)
Flux RSS
— Sources secondaires368articles RSS
ReinitialiserDevelopment of the bank's balance sheet total
GénéralCSSF Publicationsil y a 10 jours
Situation as at 31 December 2025
Quarterly development of employment in banks
GénéralCSSF Publicationsil y a 10 jours
Situation as at 31 December 2025
List of members of the Investment Fund Managers Committee (Updated)
GénéralCSSF Publicationsil y a 11 jours
Register of EU/EEA Mortgage Credit Intermediaries operating in Luxembourg under the freedom to provide services in accordance with the Mortgage Credit Directive 2014/17/EU (Updated)
Gouvernance & RégulationCSSF Publicationsil y a 11 jours
Unknown attackers exploit yet another critical SharePoint bug
Gouvernance & RégulationThe Register Securityil y a 11 jours
Last time: Beijing-backed snoops and ransomware crims. Who's next? Unknown baddies are abusing yet another critical Microsoft SharePoint bug to compromise victims' SharePoint servers, the US government warned.…
Google gives Android users a way to install unverified apps if they prove they really, really want to
Gouvernance & RégulationThe Register Securityil y a 11 jours
Chocolate Factory describes concession as an attempt to balance openess with safety It turns out you won't be limited to Google-verified apps and developers on Android after all. In the face of sustained community dissatisfaction with its developer verification requirement, Google has given Android users an out.…
Lock down Microsoft Intune, feds warn after Stryker attack
Outils & RechercheThe Register Securityil y a 11 jours
Iran-linked attackers wiped employees' devices using Intune The US government has urged companies to better secure Microsoft Intune, an endpoint management tool that was abused in last week's cyberattack against med-tech firm Stryker.…
Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation
Gouvernance & RégulationInfosecurity Magazineil y a 11 jours
Hastalamuerte leaks The Gentlemen RaaS ops: FortiGate exploits, BYOVD evasion, Qilin split tactics
Communication regarding management notifications and de-notifications with a European passport for Luxembourg-domiciled IFMs
GénéralCSSF Publicationsil y a 11 jours
Financial Brands Targeted in Global Mobile Banking Malware Surge
Malware & RansomwareInfosecurity Magazineil y a 11 jours
Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices
FCA Updates Cyber Incident and Third-Party Reporting Rules
Outils & RechercheInfosecurity Magazineil y a 11 jours
The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer
AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since January
Gouvernance & RégulationInfosecurity Magazineil y a 11 jours
Notorious ransomware group Interlock has been exploiting a Cisco zero-day bug since January, AWS says
Notification form for updating payment institutions/electronic money institutions information
GénéralCSSF Publicationsil y a 11 jours
UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs
Gouvernance & RégulationInfosecurity Magazineil y a 11 jours
35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs
Smashing Security podcast #459: This clever scam nearly hijacked a tech CEO’s Apple ID
Gouvernance & RégulationGraham Cluleyil y a 12 jours
In episode 459 of Smashing Security, we dive into a chillingly clever account takeover attempt targeting WordPress co-founder Matt Mullenweg - involving MFA fatigue, real Apple alerts, a convincing support call, and a phishing page that oh-so-nearly worked. If a famous techie could have this happen to you, can you be sure you're immune? Plus: would you donate your lifetime medical history to science if you were promised anonymity? We unpack serious concerns around UK Biobank, where “de-identified” data may not be as anonymous as you think — and how surprisingly little information it takes to reveal everything. And! Human-powered “AI”, and a punishment worse than prison: eight hours on the RSA expo floor... All this, and much more, in episode 459 of the "Smashing Security" podcast with cybersecurity veteran Graham Cluley, and special guest Paul Ducklin.
Legal department - Consumer protection / financial crime (Updated)
GénéralCSSF Publicationsil y a 12 jours
Out-of-court consumer complaint resolution
Okta made a nightmare micromanager for your AI agents
Gouvernance & RégulationThe Register Securityil y a 12 jours
Where are you? What are you working on? Why are you doing that? Identity access and management platform Okta announced the general availability of its Okta for AI Agents, which will give customers the ability to do three things: locate agents, see what they’re doing, and shut them down if need be.…
State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns
Gouvernance & RégulationThe Register Securityil y a 12 jours
Darksword is the second iOS exploit chain in a month A new exploit kit targeting iPhone users and stealing their sensitive data is being abused by "multiple" spyware vendors and suspected nation-state goons, security researchers said on Wednesday.…
Ransomware crims abused Cisco 0-day weeks before disclosure, says Amazon security boss
Gouvernance & RégulationThe Register Securityil y a 12 jours
Interlock's post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses.…