DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Security Firm claims to have discovered ‘Huge security breach at European Parliament’ that Parliament denies is theirs

Posted on May 16, 2020 by Dissent

Rebecca Nicholson reports:

Yash Kadakia, founder of Security Brigade and Shadow Map, said his group had found a major data breach. The security expert, a self-proclaimed “Code Monkey”, was able to easily access data and passwords from members. After Brussels denied the claims, Mr. Kadakia doubled down and revealed more details of the alleged breach.

This is another one of those cases where a researcher goes public with allegations of a leak or breach while the entity allegedly breached firmly denies any breach.  In response to a statement from the European Parliament that they investigated and

can confirm no official accounts or mailboxes of the European Parliament are involved. This information may be related to an old service account of a political group.

Kadakia told the Daily Express a breach had definitely occurred and provided what he considers proof of his claim.

Read more on Express.co.uk.  As of the time I’m posting this, I don’t see where this story has really picked up any traction or further assessment in EU news outlets other than those just republishing the Express’s reporting. Nor is there any formal write-up on Shadow Brigade or Shadow Map. Most of the claims appear to be on Twitter in Kadakia’s account.  One hour ago, Kadakia posted this update on his timeline:

Update: The issue has been fixed and the portals have been taken offline. I’d love to understand if appropriate GDPR disclosure and incident handling policies are being followed. https://t.co/7ucpy418Sk

— Yash Kadakia (@yashkadakia) May 16, 2020

Update: The issue has been fixed and the portals have been taken offline. I’d love to understand if appropriate GDPR disclosure and incident handling policies are being followed.

So it sounds like somebody did something to lock down the data. But it was it the European Parliament? As yet, we do not know.

Category: Government SectorNon-U.S.

Post navigation

← Indiana Court of Appeals reinstates patient’s lawsuit against a hospital for breach by employee
Stop & Shop Warns Customers Of Potential Data Security Issue At Five Stores →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Turkish Group Hacks Zero-Day Flaw to Spy on Kurdish Forces
  • Cyberattacks on Long Island Schools Highlight Growing Threat
  • Dior faces scrutiny, fine in Korea for insufficient data breach reporting; data of wealthy clients in China, South Korea stolen
  • Administrator Of Online Criminal Marketplace Extradited From Kosovo To The United States
  • Twilio denies breach following leak of alleged Steam 2FA codes
  • Personal information exposed by Australian Human Rights Commission data breach
  • International cybercrime tackled: Amsterdam police and FBI dismantle proxy service Anyproxy
  • Moldovan Police Arrest Suspect in €4.5M Ransomware Attack on Dutch Research Agency
  • N.W.T.’s medical record system under the microscope after 2 reported cases of snooping
  • Department of Justice says Berkeley Research Group data breach may have exposed information on diocesan sex abuse survivors

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • License Plate Reader Company Flock Is Building a Massive People Lookup Tool, Leak Shows
  • FTC dismisses privacy concerns in Google breakup
  • ARC sells airline ticket records to ICE and others
  • Clothing Retailer, Todd Snyder, Inc., Settles CPPA Allegations Regarding California Consumer Privacy Act Violations
  • US Customs and Border Protection Plans to Photograph Everyone Exiting the US by Car
  • Google agrees to pay Texas $1.4 billion data privacy settlement
  • The App Store Freedom Act Compromises User Privacy To Punish Big Tech

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.