Transactions financières frauduleuses après compromission de système via des outils de Remote Management and Monitoring (RMM) (uniquement en anglais)

The CSSF has been made aware of a recent malspam attack, that starts with the compromise of workstations via unwanted installation of Remote Management and Monitoring (RMM) tools, and ultimately resulting to fraudulent Multiline transactions.

CIRCL, the Computer Incident Center Luxembourg, published a technical report on this subject, including recommendations, available at this URL: https://circl.lu/pub/tr-93/.

The CSSF strongly recommends all supervised entities concerned to take duly note of this report and to take actions as appropriate.