On Friday 6 March 2026, Luxembourg’s Ministry for Digitalisation and High Commission for National Protection provided an update on the recent discovery of malware on the system used to access mobile devices (smartphones and tablets) managed by the Centre for Information Technologies of the State (CTIE).
According to the ministry, as a result of the findings several preventive measures were implemented. These included isolating the affected server and establishing a completely new server.
Following new elements that emerged, the cyber risk assessment unit met on the evening of Thursday 5 March and Prime Minister Luc Frieden convened experts to inform the Government Council (Cabinet) of the findings as of Friday 6 March.
According to the technical analysis carried out by the CTIE and GOVCERT, an entity of the High Commission for National Protection, an external actor was able to access a list of information necessary for managing the laptop devices administered by the CTIE. This list contained personal information including the names, telephone numbers and professional email addresses of the holders of those devices as well as the technical characteristics of the devices.
The CTIE services contained the unauthorised access within a few hours and limited it to the list of laptop devices managed by the CTIE. No information relating to citizens was affected. As a precautionary measure, the CTIE also informed the individuals concerned and provided recommendations encouraging increased vigilance.
The ministry noted that the competent services continued their technical analyses regarding the incident, as well as assessing the possible need for additional precautionary measures.
The CTIE is Luxembourg government’s central IT administration and is responsible for building, running and securing information technology services for the Luxembourg state.
