ShinyHunters Claims Council of Europe Hack
The extortion group ShinyHunters claims to have hacked the Council of Europe and stolen approximately 297 GB of data, including sensitive employee personal information. The stolen data allegedly includes payroll records, CVs, contracts, bank account details, medical records, and other personal identifiers for thousands of employees. The group has threatened to publicly release the data unless the Council of Europe initiates negotiations. The Council of Europe has not publicly acknowledged the incident. No official patch or remediation guidance has been provided.
AI Analysis
Technical Summary
ShinyHunters, an extortion-focused hacking group, claims to have breached the Council of Europe's network, exfiltrating over 297 GB of data comprising more than 429,000 files from multiple departments. The data reportedly includes detailed personal and financial information of Council employees spanning 2011 to 2026. The group has posted the data on a Tor-based leak site and issued a deadline for negotiations. The Council of Europe has not confirmed or responded to the claims. There is no information on the vulnerability or attack vector used, nor any vendor advisory or patch information.
Potential Impact
If the claims are accurate, the breach exposes a large volume of sensitive personal and financial data of Council of Europe employees, including payroll, bank account information, medical records, and personally identifiable information. This could lead to identity theft, financial fraud, privacy violations, and reputational damage to the organization. The public release of such data would exacerbate these impacts. There is no indication of direct impact on Council of Europe's operational systems or services.
Mitigation Recommendations
No official remediation or patch information is available. The Council of Europe has not publicly acknowledged the incident or provided guidance. Organizations should monitor for updates from the Council of Europe and relevant authorities. Affected individuals should be alerted if and when the breach is confirmed. Since this is a data breach and extortion threat, standard incident response involving forensic investigation, containment, and notification procedures should be followed once more information is available.
ShinyHunters Claims Council of Europe Hack
Description
The extortion group ShinyHunters claims to have hacked the Council of Europe and stolen approximately 297 GB of data, including sensitive employee personal information. The stolen data allegedly includes payroll records, CVs, contracts, bank account details, medical records, and other personal identifiers for thousands of employees. The group has threatened to publicly release the data unless the Council of Europe initiates negotiations. The Council of Europe has not publicly acknowledged the incident. No official patch or remediation guidance has been provided.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
ShinyHunters, an extortion-focused hacking group, claims to have breached the Council of Europe's network, exfiltrating over 297 GB of data comprising more than 429,000 files from multiple departments. The data reportedly includes detailed personal and financial information of Council employees spanning 2011 to 2026. The group has posted the data on a Tor-based leak site and issued a deadline for negotiations. The Council of Europe has not confirmed or responded to the claims. There is no information on the vulnerability or attack vector used, nor any vendor advisory or patch information.
Potential Impact
If the claims are accurate, the breach exposes a large volume of sensitive personal and financial data of Council of Europe employees, including payroll, bank account information, medical records, and personally identifiable information. This could lead to identity theft, financial fraud, privacy violations, and reputational damage to the organization. The public release of such data would exacerbate these impacts. There is no indication of direct impact on Council of Europe's operational systems or services.
Mitigation Recommendations
No official remediation or patch information is available. The Council of Europe has not publicly acknowledged the incident or provided guidance. Organizations should monitor for updates from the Council of Europe and relevant authorities. Affected individuals should be alerted if and when the breach is confirmed. Since this is a data breach and extortion threat, standard incident response involving forensic investigation, containment, and notification procedures should be followed once more information is available.
Technical Details
- Article Source
- {"url":"https://www.securityweek.com/shinyhunters-claims-council-of-europe-hack/","fetched":true,"fetchedAt":"2026-06-15T10:45:28.075Z","wordCount":989}
Threat ID: 6a2fd7c80b89be6888c19a87
Added to database: 6/15/2026, 10:45:28 AM
Last enriched: 6/15/2026, 10:45:35 AM
Last updated: 6/15/2026, 11:53:10 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.