What caused the European Commission AWS hack?

TeamPCP snagged a management API key from Trivy supply-chain compromise, used it to breach on March 10, hunted more creds with TruffleHog, exfiltrated data undetected for days.

How much data was stolen in the CERT-EU reported breach?

90GB archive (340GB uncompressed)—names, emails, 51k+ email files including potential user content from 71 europa.eu clients across 30+ EU entities.

Is TeamPCP linked to other attacks?

Yes—supply-chain hits on GitHub, PyPI (LiteLLM infecting thousands), NPM, Docker with Cloud Stealer malware.

☁️ Cloud Security

EU Cloud Hack: Stolen AWS Key Exposes 30 Entities' Secrets

Hackers waltzed into the European Commission's AWS cloud with a pilfered API key, swiping data from 30 EU outfits. CERT-EU calls it TeamPCP's work—supply-chain slop at its finest.

theAIcatchup Apr 03, 2026 4 min read 33 views

Illustration of hackers breaching European Commission AWS cloud with stolen API key

⚡ Key Takeaways

TeamPCP exploited stolen AWS API key from Trivy supply-chain attack to breach EC cloud undetected for 5 days. 𝕏
ShinyHunters leaked 90GB of data from 30+ EU entities, including personal info and emails. 𝕏
Highlights ongoing EU cloud misconfigs despite GDPR—supply-chain risks persist. 𝕏

Published by

theAIcatchup

Threat intelligence. Zero noise.

#AWS supply-chain attack #CERT-EU #European Commission hack #TeamPCP

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Bleeping Computer

⚡ Key Takeaways

The 60-Second TL;DR

theAIcatchup

Share this article

Worth sharing?

Related Stories

TeamPCP's Telnyx SDK Hijack: Stealthier Than LiteLLM, Deadlier Too

TeamPCP's Supply Chain Onslaught Hits Databricks, Splits Ransomware Into Two Deadly Tracks

Cisco Source Code Vanishes in TeamPCP's Trivy Supply Chain Heist

LiteLLM's Backdoor Bombshell: How Hackers Hijacked AI's Fast Lane

Stay in the loop