European Commission Data Breach: 300GB Stolen in Trivy Supply Chain Attack
Hackers stole over 300GB of data from the European Commission's AWS environment using an API key compromised in the Trivy supply chain attack, exposing personal information for 71 EU entities including 42 Commission clients.
Key Points
- Over 300GB of data stolen from European Commission AWS environment
- Breach linked to TeamPCP group's compromise of Trivy vulnerability scanner on March 19
- Personal data including names, email addresses, and email contents exposed for 71 EU entities
- Same supply chain attack also resulted in theft of Cisco source code
Full Details
The European Commission has confirmed a major data breach linked to the TeamPCP hacking group's compromise of Aqua Security's Trivy vulnerability scanner. Attackers gained access to the Commission's AWS account using an API key that was compromised on March 19 when the Commission inadvertently downloaded a tainted version of the Trivy tool. The breach resulted in the theft of approximately 300GB of data, including personal information such as names, email addresses, and email contents. CERT-EU reported that the exfiltrated data relates to websites hosted for up to 71 clients of the Europa web hosting service: 42 internal clients of the European Commission and at least 29 other Union entities. The same supply chain attack also compromised Cisco, resulting in the theft of portions of the company's source code.
Why It Matters
This breach demonstrates the cascading risks of supply chain attacks on security tools, where a compromise of a single widely-used vulnerability scanner can expose hundreds of organizations. The incident underscores the need for rigorous verification of security tools before deployment and highlights how even security-conscious organizations can be vulnerable through their supply chain.
Get stories like this delivered daily
AI-curated news, personalized to your interests. Zero noise.
Start 7-Day Free Trial →More in Global News
Israel continues deadly attacks on Gaza while striking Iran, Lebanon
Israel has kept up its attacks on Gaza while striking Iran and Lebanon, killing at least four Palestinians on Sunday.
Frustration grows as Iran’s wartime internet shutdown breaks grim record
Since January, Iran's near total internet blackout has impacted jobs and businesses.
‘Refuse to celebrate’: Christians in Gaza mark sombre Easter amid genocide
Christians pray in quiet gatherings to mark the resurrection of Christ while holding on to hope for survival and peace.
Israeli air strikes, shelling across Lebanon add to rising death toll
Widespread Israeli attacks pounded Lebanon from Beirut to Tyre on Sunday, adding to a rising death toll.