Germany

BaFin Warns Consumers About MORRISONBOOST Services on WhatsApp

BaFin has issued a warning to consumers regarding unauthorized financial services offered through WhatsApp groups by MORRISONBOOST. The platform allegedly encourages trading in financial instruments without the required authorization from BaFin, raising concerns about potential banking and financial service violations.

BaFin Imposes Administrative Fine on a.i.s. AG

BaFin has imposed an administrative fine of €25,000 on a.i.s. AG for failing to publish its half-yearly financial report for the 2025 financial year. This contravenes obligations under the German Securities Trading Act (WpHG), which requires timely publication of financial reports for investor information.

BaFin Restricts Marketing, Distribution, and Sale of Futures to Retail Clients

The German Federal Financial Supervisory Authority (BaFin) has issued a general administrative act restricting the marketing, distribution, and sale of futures to retail clients. This measure, effective January 1, 2023, prohibits investment firms from offering futures to retail clients unless specific exceptions apply, such as excluding additional payment obligations or confirming the purchase is solely for hedging purposes.

BaFin Warns Consumers About Tradealles.com Website and Identity Fraud

Germany's BaFin has issued a warning regarding the website tradealles.com, which is suspected of offering unauthorized financial, investment, and cryptoasset services. The warning also highlights potential identity fraud, as the operators appear to be misusing registration details of another company.

BaFin Warns Consumers About Panthera-gmbh.com Identity Fraud

BaFin has issued a warning regarding the website panthera-gmbh.com, suspecting its operators of offering financial and investment services without authorization. The agency also confirmed that this is a case of identity fraud, with no connection to the legitimate company Panthera AM GmbH.

Bundeskartellamt Clears Adobe's Takeover of Semrush

The German Federal Cartel Office (Bundeskartellamt) has cleared Adobe Inc.'s acquisition of Semrush Holdings, Inc. in the first phase of merger control. The investigation found no serious concerns regarding market foreclosure or product bundling, allowing the transaction to proceed.

Atlassian Bamboo Data Center Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory regarding a vulnerability in Atlassian Bamboo Data Center versions prior to 9.6.24, 10.2.16, and 12.1.3. The vulnerability allows remote, authenticated attackers to execute arbitrary code, posing a high risk.

Google Chrome Vulnerabilities (CVSS 8.8)

CERT-Bund has issued a security advisory for Google Chrome, detailing multiple vulnerabilities with a CVSS Base Score of 8.8. These vulnerabilities could allow remote attackers to execute code, bypass security measures, cause denial-of-service, or manipulate data. Affected versions include Google Chrome prior to 146.0.7680.153 and 146.0.7680.154 on Linux, MacOS X, and Windows.

Langflow Vulnerability Allows Remote Code Execution

CERT-Bund has issued a security advisory for Langflow, detailing a critical vulnerability that allows remote code execution. The advisory affects versions prior to 1.9.0 and impacts Linux, UNIX, and Windows operating systems. Mitigation measures are available.

Oracle Fusion Middleware Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory for Oracle Fusion Middleware Identity Manager and Web Services Manager versions prior to 12.2.1.4.0 and 14.1.2.1.0. A critical vulnerability (CVSS 9.8) allows remote attackers to execute arbitrary code, potentially leading to full system compromise.