At least 29 other European Union entities were disclosed by CERT-EU to have had their data compromised following the TeamPCP supply chain attack against the European Commission's Amazon cloud environment, reports BleepingComputer.
Analysis of the 90 GB document archive stolen from the intrusion that was exposed by the ShinyHunters threat operation revealed tens of thousands of files with personal data belonging to up to 71 clients of the Europa web hosting service and 42 internal EC clients, according to CERT-EU. Another 51,992 files pertaining to outbound email communications were also pilfered in the attack.
"The majority of these are automated notifications with little to no content. However, 'bounce-back' notifications, which are responses to incoming messages from users, may contain the original user-submitted content, posing a risk of personal data exposure," said CERT-EU, which noted that the Commission's other AWS accounts have not been compromised.
Such a development comes more than a month after the EC reported a breach concerning its mobile device management platform.
Analysis of the 90 GB document archive stolen from the intrusion that was exposed by the ShinyHunters threat operation revealed tens of thousands of files with personal data belonging to up to 71 clients of the Europa web hosting service and 42 internal EC clients, according to CERT-EU. Another 51,992 files pertaining to outbound email communications were also pilfered in the attack.
"The majority of these are automated notifications with little to no content. However, 'bounce-back' notifications, which are responses to incoming messages from users, may contain the original user-submitted content, posing a risk of personal data exposure," said CERT-EU, which noted that the Commission's other AWS accounts have not been compromised.
Such a development comes more than a month after the EC reported a breach concerning its mobile device management platform.




