The data security breach detected in the FIN-FSA Financial Supervisory Authority's reporting system | EBA, EIOPA, ESMA, National Reporting (Virati)

The data security breach was detected in the joint Reporting System of the FIN-FSA Financial Supervisory Authority and the Bank of Finland on 18 December 2025: Data security has been compromised for reports submitted via an SFTP link on 17–18 December 2025. A possibility to view data submitted via another reporter’s SFTP link arose in connection with the transfer to production of new functionality on Wednesday afternoon, 17 December 2025 at 14.30. The functionality was withdrawn from use immediately after the detection of the data security breach on Thursday morning, 18 December 2025 at 08.45. 

The functionality is no longer in use and reporters are not be able to see reports submitted by others or their feedback.

For further information, please contact:

Arttu Kiviniemi, Head of Division, tel. +358 9 183 5237, arttu.kiviniemi(at)finanssivalvonta.fi
Kimmo Kauhanen, Head of Division, tel. +358 9 183 5556, kimmo.kauhanen(at)finanssivalvonta.fi