European Commission Data Breach Exposes Vulnerabilities in Trivy Supply Chain Attack
The European Commission (EC) has confirmed a significant data breach involving the theft of over 300GB of data from its AWS environment. This breach was facilitated by a compromised API key in a supply chain attack on the Trivy vulnerability scanner, a tool developed by Aqua Security. The breach, which occurred on March 24, was initially disclosed on March 27. Hackers, identified as the TeamPCP group, exploited the compromised API key to gain unauthorized access to the EC's AWS cloud account, which supports the Europa.eu platform. This platform hosts public websites for the EC and other European Union entities. The attackers used the compromised key to create new access credentials, allowing them to conduct reconnaissance and exfiltrate data. The stolen data, which includes personal information such as names, email addresses, and usernames, was later published by the ShinyHunters extortion group on their Tor-based leak site. 
