The European Commission, the main executive body of the European Union, is investigating a security breach after a threat gained access to the Commission's Amazon cloud environment.
Αν και το εκτελεστικό γραφείο της EU δεν έχει ακόμη αποκαλύψει το περιστατικό δημόσια, η BleepingComputer έμαθε ότι η παραβίαση επηρέασε τουλάχιστον έναν από τους λογαριασμούς AWS (Amazon Website Services) of the Commission.
“AWS did not experience a security incident and our services were operating as designed,” an AWS spokesperson told BleepingComputer after the publication.
Sources familiar with the incident told BleepingComputer that the attack was quickly detected and that the Commission's cybersecurity incident response team is now investigating.
While the Commission has yet to release details about this breach, the threat actor claiming responsibility for the attack contacted BleepingComputer earlier this week, stating that they had stolen over 350GB of data (including multiple databases).
They did not reveal how they compromised the affected accounts, but they provided BleepingComputer with numerous screenshots as proof that they had access to information belonging to European Commission employees and an email server used by Commission employees.
The threat actor also told BleepingComputer that they will not attempt to blackmail the Commission using the allegedly stolen data as leverage, but plan to leak the data online later.
The Commission revealed another data breach in February, after discovering on January 30 that the mobile device management platform used to manage its staff's devices had been compromised.
The January incident appears to be linked to similar attacks targeting other European institutions (including the Dutch Data Protection Authority and Valtoria government agency of the Finnish Ministry of Finance) exploiting code injection vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) software.
These recent security breaches come after the Commission proposed on January 20 new cybersecurity legislation to strengthen defenses against state actors and cybercrime groups targeting Europe's critical infrastructure.
Last week, the Council of the European Union also imposed sanctions on three Chinese and Iranian companies for orchestrating cyberattacks targeting critical infrastructure in member states.
Update March 27, 13:56 PM EDT: Added Amazon statement.
Automated test execution proves the path exists. BAS proves if your controls stop it. Most teams run without each other.
This white paper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic questions for any tool evaluation.
VIA: bleedingcomputer.com
