- The European Commission suffers a cyber attack on its Europa.eu infrastructure hosted on AWS
- Attackers allegedly stole 350 GB of data from the organization and plan to leak it online
- EC says internal systems are not affected, investigation is ongoing and additional protections have been implemented
The European Commission (EC), the executive cabinet of the European Union, has confirmed that it suffered a cyber attack in which it lost sensitive data.
In an official statement, the Commission said it detected the intrusion on March 24, 2026, when unidentified attackers accessed the cloud infrastructure where its Europa.eu website is hosted.
While the organization said it responded “quickly” and managed to contain the risk, some data appears to have been taken from the website.
Article continues below.
Still investigating
“Commission services are still investigating the full impact of the incident,” the press release reads.
“The Commission’s internal systems were not affected by the cyber attack. The Commission will continue to monitor the situation and take all necessary measures to ensure the security of its internal systems and data. It will analyze the incident and use the results to further improve its cybersecurity capabilities.”
The EC did not discuss the nature of these files or how many of them were stolen. It said it is notifying “Union entities that may have been affected by the incident,” suggesting that it was organization data, not personal information, that was stolen.
It added that it implemented additional risk mitigation features to protect services and data without disrupting the website.
While the EC did not say who the attackers were or how they were able to access its network, beepcomputer claims that bad actors broke into an Amazon Web Services (AWS) account, from which they allegedly took more than 350 GB of data.
Amazon confirmed to the publication that its infrastructure is intact, suggesting that this was either a social engineering attack or the result of a successful data-stealing infection.
The anonymous group said it had no intention of extorting money from EC and would rather leak the stolen information on the dark web at a later date.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
