The European Commission is investigating a breach after detecting traces of a cyberattack on its mobile device management platform that may have exposed some staff names and phone numbers, though no mobile devices have been found to be compromised. The incident appears linked to zero-day code-injection flaws in Ivanti Endpoint Manager Mobile (EPMM) that have also affected Dutch authorities and Finlandβs Valtori, and the Commission says the system was contained and cleaned within nine hours. #IvantiEPMM #EuropeanCommission
Keypoints
- The Commission detected traces of a cyberattack on its mobile device management infrastructure on 30 January.
- Attackers may have accessed staff names and mobile numbers, but no compromise of mobile devices has been detected.
- Investigations link the breach to exploited zero-day code-injection vulnerabilities in Ivanti EPMM (CVE-2026-1281 and CVE-2026-1340).
- Similar intrusions affected Dutch agencies and Finlandβs Valtori, potentially impacting tens of thousands of users.
- The Commission reported the incident was contained and the system cleaned within nine hours amid ongoing EU cybersecurity reform efforts.