The European Union’s principal executive arm, the European Commission, has officially acknowledged a significant cyberattack that reportedly led to the theft of vast quantities of data from its cloud storage infrastructure. This confirmation follows claims by hackers of a major data breach, sending ripples through the cybersecurity community.
Breach Confirmed, Investigation Underway
Nika Blazevic, a spokesperson for the European Commission, confirmed the incident to TechCrunch on Friday, stating that the Commission “discovered a cyber-attack, which affected part of our cloud infrastructure.” Blazevic emphasized that immediate action was taken to contain the breach, and risk mitigation measures have been implemented. While the investigation remains ongoing, the Commission has assured that its internal systems were not compromised by the attack.
A more detailed statement published on the Commission’s official website clarified that the breach specifically targeted “its cloud infrastructure hosting the Commission’s web presence on the Europa.eu platform.” This platform is critical, housing a substantial portion of the Commission’s public-facing website data.
Hundreds of Gigabytes Stolen from AWS
The news of the breach initially surfaced on Friday, as reported by Bleeping Computer, which cited informed sources. According to their report, the perpetrators managed to exfiltrate hundreds of gigabytes of sensitive data. This haul reportedly included multiple databases pulled directly from the European Commission’s account on Amazon Web Services (AWS), a leading cloud computing provider.
Evidence of Access Provided
The hackers reportedly furnished Bleeping Computer with compelling evidence of their unauthorized access, including screenshots, to substantiate their claims. However, the precise nature and classification of the data stolen remain unclear, prompting concerns about potential impacts on privacy and operational security.
Implications for EU Digital Security
This incident underscores the persistent and evolving threat landscape faced by major governmental and intergovernmental organizations. While the Commission asserts its internal systems are secure, a breach of its public-facing cloud infrastructure, especially involving such a large volume of data, raises serious questions about the robustness of its external digital defenses and the security protocols of its cloud service providers. The ongoing investigation will be crucial in determining the full scope of the compromise and implementing enhanced safeguards to prevent future occurrences.
For more details, visit our website.
Source: Link
Leave a comment