ShinyHunters hacks Council of Europe
Published: 15/06/2026
| Bleeping Computer
The Council of Europe (CoE) is investigating a reported personal data breach after the hacking group ShinyHunters claimed to have stolen over 297 gigabytes of data from the organisation. The threat actors allegedly stole 429,000 files by exploiting a zero-day vulnerability in Oracle PeopleSoft, an exploit that has been used to compromise more than 100 organisations worldwide.
According to a post on the group's data-leak site, the stolen information contains a substantial amount of HR and payroll records. The compromised data reportedly includes employee payslips, purchase orders, curriculum vitae, bank details, tax records, salaries, and medical documentation. A spokesperson for the CoE confirmed that the organisation is assessing the situation and investigating the matter, though they declined to provide further comment.
Training Announcement: The BCS Practitioner Certificate in Information Risk Management (PCIRM) is an advanced-level programme for data specialists who actively monitor and minimise the risk of cyberattacks, information security incidents, and data protection violations. Find out more.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 3,250 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.