European Commission Reports Cyberattack on Mobile Management Infrastructure
Learn More
The European Commission (EC) reports a cybersecurity incident on January 30, 2026, after detecting unauthorized access to its central mobile device management (MDM) infrastructure. The breach was detected by CERT-EU, cybersecurity team for European Union institutions.
The Commission did not name the vendor, but the incident coincides with widespread exploitation of vulnerabilities in the Ivanti Endpoint Manager Mobile (EPMM) platform, which also impacted the Dutch Data Protection Authority (AP) and the Council for the Judiciary.
Possibly exploited vulnerabilities are CVE-2026-1281 and CVE-2026-1340 (both CVSS score 9.8) - code injection vulnerabilities.
The compromised data includes:
- Staff names
- Mobile phone numbers
- Business email addresses
- Work-related metadata
The number of affected individuals is not disclosed. The Commission claims that the intrusion was limited to the central infrastructure and did not attack the endpoints themselves. It's teams contained the incident and cleaned the affected systems within nine hours of discovery. Ivanti has released security updates and a detection script to help organizations identify traces of exploitation. The Dutch NCSC-NL advised all users of the platform to assume compromise even if patches were applied quickly.
