European Commission (EC), the executive branch of the European Union (EU), is among a number of EU institutions targeted by a cyberattack last month, the organization has confirmed.
As reported by Bleeping Computer, what’s known so far is that the attackers did not manage to break into EC systems and did not make away with any sensitive data. However, forensic analysis of the event is still ongoing and new information may yet emerge.
The EC set up a non-stop service that aims to eliminate any issues in the aftermath of the attack.
“We are working closely with CERT-EU, the Computer Emergency Response Team for all EU institutions, bodies and agencies and the vendor of the affected IT solution,” an EC spokesperson told BleepingComputer. “The Commission has set up a 24/7 monitoring service and is actively taking mitigating measures,” it was added.
Information on the event is limited and the identity of the group behind the attack remains unknown. Neither do we know how the attack took place, what tools and tactics were used, nor what the attackers motives may have been.
According to Bloomberg, the attack was bigger than what the EC usually experiences usually; big enough for the senior officials to be alerted. The same source claims EU staff are being alerted to potential phishing attempts.