嗯,用户让我总结这篇文章的内容,控制在一百个字以内。首先,我需要通读文章,抓住主要信息。文章讲的是欧盟的网络安全机构CERT-EU报告了一起数据泄露事件,黑客团队TeamPCP入侵了欧盟执行机构的AWS账户,窃取了92GB的数据,包括个人信息和邮件内容。这些数据后来被另一个黑客组织ShinyHunters泄露。事件起因是TeamPCP通过Trivy工具获取了API密钥,进而入侵了AWS账户。CERT-EU正在联系受影响的组织,并指出这次事件显示了网络犯罪分子合作的趋势。 接下来,我需要将这些要点浓缩到100字以内。要确保涵盖主要事件:谁、做了什么、结果如何、原因以及影响。同时,语言要简洁明了。 可能会遇到的问题是如何在有限的字数内准确传达所有关键信息。比如,既要提到两个黑客组织,又要说明数据泄露的原因和影响。可能需要合并一些信息或使用更简洁的表达方式。 最后,检查字数是否符合要求,并确保没有遗漏重要细节。 </think> 欧盟网络安全机构CERT-EU报告称,黑客组织TeamPCP入侵欧盟执行机构亚马逊云服务账户,窃取92GB数据并被另一组织ShinyHunters泄露。此次事件源于API密钥被盗及开源工具Trivy被攻破。 2026-4-3 16:33:40 Author: techcrunch.com(查看原文) 阅读量:3 收藏
The European Union’s cybersecurity agency said Thursday that a recent hack and data breach at the EU’s executive body was the work of a cybercriminal group known as TeamPCP.
In a new report, CERT-EU also reported that the hackers stole around 92 gigabytes of compressed data from a compromised Amazon Web Services (AWS) account used by the bloc’s executive, the European Commission, which included personal data containing names, email addresses, and the contents of emails.
The breach affected the cloud infrastructure of the Commission’s Europa.eu platform, which member states use to host websites and publications of the bloc’s institutions and agencies.
CERT-EU wrote that the data of at least 29 other EU entities may be affected, and that dozens of internal European Commission clients could have had data stolen as well.
The stolen data was then posted online by another hacking group, the notorious ShinyHunters.
While the size of the data breach is itself notable, the hack and subsequent leak of the European Commission’s data by two separate hacking groups highlights a growing trend of cybercriminals working together to extort their victims.
CERT-EU said that the breach originated on March 19 when hackers acquired a secret API key associated with the European Commission’s AWS account, following an earlier hack targeting the open source security tool Trivy. The Commission inadvertently downloaded a copy of the compromised Trivy tool following the project’s recent breach, allowing the hackers to steal its secret API key and use that access to pivot to obtain data stored in the Commission’s AWS account.
While the service said it’s still analyzing the data published online, close to 52,000 files contain sent email messages. CERT-EU said the majority of these emails are automated with little to no content, but emails that bounced back with an error “may contain the original user-submitted content, posing a risk of personal data exposure.”
CERT-EU said it is already in contact with affected organizations.
Contact Us
Do you have more information about this breach? Or other cyberattacks? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email.
A spokesperson for the European Commission told TechCrunch that the body is closed until next week, and would respond to a request for comment then.
A member of ShinyHunters did not respond to requests for comment.
Besides the Trivy breach, TeamPCP has been linked to ransomware attacks and crypto-mining campaigns, says Aqua Security, which develops Trivy. The hackers have more recently been behind a systematic campaign of supply chain attacks compromising other open source security projects, according to Palo Alto Networks Unit 42.
By targeting developers with keys to access sensitive systems, the hackers “then have the ability to hold compromised organizations for ransom, demanding extortion payments,” Unit 42 wrote.
Lorenzo Franceschi-Bicchierai is a Senior Writer at TechCrunch, where he covers hacking, cybersecurity, surveillance, and privacy.
You can contact or verify outreach from Lorenzo by emailing [email protected], via encrypted message at +1 917 257 1382 on Signal, and @lorenzofb on Keybase/Telegram.
如有侵权请联系:admin#unsafe.sh