The European Commission suffered significant DDoS attack on Thursday, which disrupted its operations from approximately 2pm GMT and was not resolved until later that night.
The attack, which was first reported by Politico, was initially thought to be an attempt to hack into the organisation's systems. However, it was later clarified that, in fact, it was a distributed denial of service (DDoS) attack - a type of cyber assault that floods networks with high volumes of traffic all in one go in an effort to take it offline. In this particular case, it's understood that millions of requests were sent to the EC's servers simultaneously, which the organisation said "saturated [its] network".
In a statement to Politico, an EC spokesperson said: "No data breach has occurred ... the attack has so far been successfully stopped with no interruption of service, although connection speeds have been affected for a time."
However, an insider at the Commission reportedly told the media outlet the disruption was significant enough to halt work for long stretches of the afternoon, as workers were unable to access the internet for hours at a time.
There has been no indication of the source of the malicious traffic, however it does coincide with the EU Ukraine Summit, which is taking place in Brussels, where the European Union "has confirmed a range of specific support programmes designed to foster accountable and transparent governance".
IT Pro has contacted the European Commission for confirmation of the attack and comment on its nature, but hadn't received a response at the time of publication.
-
Cleo attack victim list grows as Hertz confirms customer data stolenNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
Lateral moves in tech: Why leaders should support employee mobilityIn-depth Encouraging staff to switch roles can have long-term benefits for skills in the tech sector
-
UK crime fighters wrangle “several thousand” potential cyber criminals in DDoS-for-hire honeypotNews The sting follows a recent crackdown on DDoS-for-hire services globally
-
US begins seizure of 48 DDoS-for-hire services following global investigationNews Six people have been arrested who allegedly oversaw computer attacks launched using booters
-
Will triple extortion ransomware truly take off?In-depth Operators are now launching attacks with three extortion layers, but there are limitations to this model
-
GoDaddy web hosting reviewReviews GoDaddy web hosting is backed by competitive prices and a beginner-friendly dashboard, and while popular, beware of hidden prices
-
Japan investigates potential Russian Killnet cyber attacksNews The hacker group has said it’s revolting against the country’s militarism and that it’s “kicking the samurai”
-
LockBit hacking group to be 'more aggressive' after falling victim to large-scale DDoS attackNews The ransomware group is currently embroiled in a battle after it leaked data belonging to cyber security company Entrust
-
Record for the largest ever HTTPS DDoS attack smashed once againNews The DDoS attack lasted 69 minutes and surpassed the previous record of 26 million RPS
-
Cloudflare unveils new One Partner Program with zero trust at its coreNews Cloudflare CEO Matthew Prince says the initiative aims to take the complexity out of zero trust architecture
