""On January 29, the National Cyber Security Center (NCSC) was informed by the supplier of vulnerabilities in EPMM," the Dutch authorities said. "EPMM is used to manage mobile devices, apps, and content, including their security.""
""It is now known that work-related data of AP employees, such as names, business email addresses, and telephone numbers, have been accessed by unauthorized persons.""
""The Commission takes seriously the security and resilience of its internal systems and data and will continue to monitor the situation," it added. "It will take all necessary measures to ensure the security of its systems.""
On January 29 the National Cyber Security Center (NCSC) was informed by a supplier about vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM). Dutch Data Protection Authority (AP) and the Council for the Judiciary (Rvdr) reported their systems were impacted and that work-related data of AP employees—names, business email addresses, and telephone numbers—were accessed by unauthorized persons. The European Commission's central mobile-device infrastructure "identified traces" of an attack that may have exposed names and mobile numbers; the incident was contained within nine hours and no compromise of mobile devices was detected. Finland's Valtori reported a breach affecting up to 50,000 employees via a zero-day and installed a corrective patch on January 29.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]