EU cloud breach alert

The Commission says it discovered the intrusion on March 24 and issued a public confirmation of the incident on March 27 as it opened a formal investigation. (bloomberg.com) Early findings state the attack affected cloud infrastructure that hosts the europa.eu platform, though the Commission noted its public websites remained operational during containment. (politico.eu) A threat actor provided reporters with screenshots as proof and claimed to have exfiltrated roughly 350 gigabytes of data, including potential access to a Commission email server. (cybernews.com) Multiple security outlets report the intrusion involved one or more compromised Amazon Web Services accounts, and the Commission says its internal administrative systems were not affected while forensic analysis continues. (bleepingcomputer.com) Observers note this is at least the Commission’s second major cybersecurity incident in recent months, prompting EU officials and industry analysts to flag gaps in resilience ahead of the probe’s findings. (breached.company) Security researchers linking the claims to the ShinyHunters extortion group have warned the published evidence raises downstream risks—including the potential misuse of signing keys for phishing—while the Commission has not publicly attributed the attack to a named actor. (bleepingcomputer.com)