The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven initiative designed to gather, review, report and respond to computer security threats and incidents.

OUR SERVICES

Malware Information Sharing Platform (MISP) and Threat Sharing Platform

Dynamic Malware Analysis Platform (DMA)

Clean documents from untrusted USB keys / sticks

Database storing historical DNS records

Recent highlights

TR-46 - Information Leaks Affecting Luxembourg and Recommendations (regularly updated) - 22nd December 2016

TR-42 - CVE-2015-7755 - CVE-2015-7756 - Critical vulnerabilities in Juniper ScreenOS - 21st December 2015

TR-41 (fr) - Crypto Ransomware - Défenses proactives et réponse sur incident - 1st December 2015

TR-41 - Crypto Ransomware - Proactive defenses and incident response - 1st December 2015

TR-38 (fr) - Attaques visant les solutions bancaires d'entreprise - Recommandations - 28th May 2015

TR-38 - Attacks targeting enterprise banking solutions - recommendations and remediations - 19th May 2015

TR-37 - VENOM / CVE-2015-3456 - Critical vulnerability in QEMU Floppy Disk Controller (FDC) emulation - 14th May 2015

TR-36 Example setup of WordPress with static export Another approach to secure your WordPress CMS - 29th April 2015

TR-33 Analysis - CTB-Locker / Critroni - 18th February 2015

A new wave of crypto ransomware targeting Luxembourg - Une nouvelle vague de ransomware cible le Luxembourg - 5th February 2015

glibc: buffer overflow in gethostbyname - 27th January 2015

NTP (Network Time Protocol) daemon - ntpd - critical vulnerabilities - 22nd December 2014

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, are vulnerable to critical padding oracle attack - CVE-2014-3566

TR-27 - GNU Bash Critical Vulnerability - CVE-2014-6271 - CVE-2014-7169 - 24th September 2014

CIRCL warns about spear phishing scams targeting corporate executives and their accounting department - 14th September 2014

[Previous news]

Latest CIRCL tweets

RT @MalwareTechBlog: Large DDoS attack just launched on https://t.co/8My1IKTvOa, appears to be down. http://tumblr.com 2016-12-23 10:00:02
Siemens Desigo PX Web modules potentially allowing remote attackers to reconstruct the corresponding private key. https://t.co/MJOzboH1qx https://cve.circl.lu/cve/CVE-2016-9154 2016-12-23 07:10:11
RT @GDataSoftwareAG: #König im eigenen Reich, Teil 1 - @pinkflawd und @rafi0t mit einer Analyse moderner APTs: https://t.co/B9KGgtNA6O #ap… https://blog.gdata.de/2016/10/koenige-und-schluesselmeister 2016-12-22 21:52:16
Many new features and updates in the AIL framework - Analysis Information Leak framework https://t.co/xq9j61bpww #datamining #infosec #Leak https://github.com/CIRCL/AIL-framework 2016-12-22 21:20:43
RT @jambay: relevant new research to the challenges to random number generation in containers on virtualized platforms https://t.co/vAWKud1… 2016-12-22 21:19:48
RT @MISPProject: MISP 2.4.58 released including a new feature to disable correlation at attribute or event level. https://t.co/LSHV4ReFJF #… http://www.misp-project.org/2016/12/22/MISP.2.4.58.released.html 2016-12-22 20:54:24
Analysis of Random Number Generation in Virtual Environments https://t.co/udIsRWDI84 https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/Studien/ZufallinVMS/Randomness-in-VMs.pdf 2016-12-22 20:03:52

Search