Recent highlights
TR-54 - Sextortion scam emails - I know your password- 2nd August 2018
Meltdown and Spectre Bugs in modern computers leak passwords and sensitive data - 3rd January 2018
TR-50 - WPA2 handshake traffic can be manipulated to induce nonce and session key reuse - 16th October 2017
TR-49 - CVE-2017-7494 - A critical vulnerability in Samba - remote code execution from a writable share - 26th May 2017
MS17-010 is critical and patches MUST BE applied. including EOL Windows. - 12th May 2017
TR-46 - Information Leaks Affecting Luxembourg and Recommendations (regularly updated) - 22nd December 2016
TR-42 - CVE-2015-7755 - CVE-2015-7756 - Critical vulnerabilities in Juniper ScreenOS - 21st December 2015
TR-41 (fr) - Crypto Ransomware - Défenses proactives et réponse sur incident - 1st December 2015
TR-41 - Crypto Ransomware - Proactive defenses and incident response - 1st December 2015
TR-38 (fr) - Attaques visant les solutions bancaires d'entreprise - Recommandations - 28th May 2015
TR-38 - Attacks targeting enterprise banking solutions - recommendations and remediations - 19th May 2015
TR-37 - VENOM / CVE-2015-3456 - Critical vulnerability in QEMU Floppy Disk Controller (FDC) emulation - 14th May 2015
TR-36 Example setup of WordPress with static export Another approach to secure your WordPress CMS - 29th April 2015
TR-33 Analysis - CTB-Locker / Critroni - 18th February 2015
A new wave of crypto ransomware targeting Luxembourg - Une nouvelle vague de ransomware cible le Luxembourg - 5th February 2015
glibc: buffer overflow in gethostbyname - 27th January 2015
NTP (Network Time Protocol) daemon - ntpd - critical vulnerabilities - 22nd December 2014
TR-27 - GNU Bash Critical Vulnerability - CVE-2014-6271 - CVE-2014-7169 - 24th September 2014
CIRCL warns about spear phishing scams targeting corporate executives and their accounting department - 14th September 2014
Latest CIRCL tweets
- RT @kafeine: Fallout += https and CVE-2018-15982 https://t.co/IrUJtrgE1U https://t.co/1mlUWG5jqH https://malware.dontneedcoffee.com/2019/01/CVE-2018-15982.html#fallout 2019-01-17 07:34:18
- Drupal core - critical security vulnerabilities https://t.co/RVEiZyhOVh - https://t.co/Jmwf3XPYaB https://www.drupal.org/sa-core-2019-002https://www.drupal.org/sa-core-2019-001 2019-01-17 07:25:31
- "Juniper ATP uses DES and a hardcoded salt for password hashing, allowing for trivial de-hashing of the password fi… https://t.co/4fJIh6JaSc https://twitter.com/i/web/status/1085641527320330246 2019-01-16 20:54:45
- RT @lafond_mat: #CyberSécurité Record pour les incidents informatiques au 🇱🇺. Le nombre d’incidents en ligne a atteint un niveau record en… 2019-01-16 20:17:40
- RT @MISPProject: Next @MISPProject trainings for threat intelligence analysts in Luxembourg (at @C3_Luxembourg) will be the 26th and 27th M… 2019-01-16 15:58:23
- RT @alexanderjaeger: Ok DFIR people, have you already had a look at: https://t.co/03y6rG2U8v it is time to nominate a team and or individua… https://www.first.org/hof/ 2019-01-16 11:07:14
- "An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle Python module unsafely, which allows remot… https://t.co/9vjMBpqh23 https://twitter.com/i/web/status/1085493575025152000 2019-01-16 11:06:50