
Society
Cybersecurity
Malware breached Luxembourg's state device system for weeks
An external actor used memory-resident malware on the State IT Centre's mobile-device-management platform to access an inventory of roughly 4,850 government smartphones and tablets, along with officials' names, work numbers and emails. Content on the devices and all citizen data were untouched. The breach, active from late January until its detection on 26 February 2026, comes as public administration becomes the EU's most-targeted sector.