RSS
Last updated: March 29, 2026 at 9:19 PM UTC
All 8 Vulnerability 3 Breach 1 Threat 4
breach
BleepingComputer
2026-03-27

European Commission breached through AWS cloud account - 350GB of data reportedly stolen

Hackers broke into the European Commission's Amazon Web Services account and reportedly stole over 350GB of data, including databases and employee information. The breach was discovered on March 24 and affected the cloud infrastructure hosting Europa.eu websites. The Commission says its internal systems weren't impacted. The attacker isn't demanding ransom - they plan to publish the data instead.

CheckReview your organization's AWS account security, especially IAM policies and access keys.
AffectedAny AWS account using static credentials, weak IAM policies, or missing MFA on privileged accounts.
FixEnforce MFA on all AWS accounts. Rotate access keys regularly. Audit IAM permissions for least-privilege. Enable CloudTrail for all regions.
By TrustStrike - External Attack Surface Management truststrikelabs.com