ALEX Stevensson reports that thousands of devices owned by the Luxembourg public sector were found to be infected with malware at the end of February, with those devices subsequently updated and secured. The security breach was confirmed on 27 February, after the malware was first discovered on 26 February; the minister said it was detected on the system that manages mobile devices, which had been infected a few hours before the provider updated its system at the end of January.
Analysis showed that the memory-resident malware gained access to the list of phones and tablets managed by the State Centre for Information Technology (CTIE), including data relating to the devices and their users. Data such as messages, calendars and photos stored on devices were not affected by the incident, according to the minister, Stéphanie Obertin.
The revelation followed a parliamentary question submitted on the same day by LSAP deputy Ben Polidori, to which Obertin provided a reply on the following Tuesday.