Spear phishing spoofing the CSSF identity

The CSSF has been made aware of a recent spear phishing and voice call scams campaign, where the CSSF identity is spoofed, targeting corporate executives and their accounting department.

CIRCL, the Computer Incident Center Luxembourg, published a technical report on this subject, including recommendations, available at this URL:

The CSSF strongly recommends all supervised entities concerned to take duly note of this report and to take actions as appropriate.