DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Security Firm claims to have discovered ‘Huge security breach at European Parliament’ that Parliament denies is theirs

Posted on May 16, 2020 by Dissent

Rebecca Nicholson reports:

Yash Kadakia, founder of Security Brigade and Shadow Map, said his group had found a major data breach. The security expert, a self-proclaimed “Code Monkey”, was able to easily access data and passwords from members. After Brussels denied the claims, Mr. Kadakia doubled down and revealed more details of the alleged breach.

This is another one of those cases where a researcher goes public with allegations of a leak or breach while the entity allegedly breached firmly denies any breach.  In response to a statement from the European Parliament that they investigated and

can confirm no official accounts or mailboxes of the European Parliament are involved. This information may be related to an old service account of a political group.

Kadakia told the Daily Express a breach had definitely occurred and provided what he considers proof of his claim.

Read more on Express.co.uk.  As of the time I’m posting this, I don’t see where this story has really picked up any traction or further assessment in EU news outlets other than those just republishing the Express’s reporting. Nor is there any formal write-up on Shadow Brigade or Shadow Map. Most of the claims appear to be on Twitter in Kadakia’s account.  One hour ago, Kadakia posted this update on his timeline:

Update: The issue has been fixed and the portals have been taken offline. I’d love to understand if appropriate GDPR disclosure and incident handling policies are being followed. https://t.co/7ucpy418Sk

— Yash Kadakia (@yashkadakia) May 16, 2020

Update: The issue has been fixed and the portals have been taken offline. I’d love to understand if appropriate GDPR disclosure and incident handling policies are being followed.

So it sounds like somebody did something to lock down the data. But it was it the European Parliament? As yet, we do not know.

Category: Government SectorNon-U.S.

Post navigation

← Indiana Court of Appeals reinstates patient’s lawsuit against a hospital for breach by employee
Stop & Shop Warns Customers Of Potential Data Security Issue At Five Stores →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon
  • US govt login portal could be one cyberattack away from collapse, say auditors
  • Two Men Sentenced to Prison for Aggravated Identity Theft and Computer Hacking Crimes
  • 100,000 UK taxpayer accounts hit in £47m phishing attack on HMRC
  • CISA Alert: Updated Guidance on Play Ransomware
  • Almost one year later, U.S. Dermatology Partners is still not being very transparent about their 2024 breach

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant
  • US State Dept. says silence or anonymity on social media is suspicious

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.