Share this article on:
Infamous leaker and cyber criminal IntelBroker has listed “crypto-related documents” belonging to Europol, according to a BreachForums post.
The threat actor said he leaked a small amount of data from Europol’s EPE (Europol Platform for Experts) environment, which is used by specialists in law enforcement for crime information sharing.
Back in May, IntelBroker claimed a breach of Europol’s EPE platform, leading to the theft of “critical files and documents”.
Now, in his latest post, the threat actor claims to have leaked documents from the EPE environment.
A sample within the post shows screenshots of two PowerPoint slides, one on Darknet Market Economics and one allegedly by the Criminal Intelligence Service of Austria. The slide is on Data Storage and Hardware.
The samples are limiting and do not indicate if any more significant or sensitive data was stolen or leaked.
The leak follows IntelBroker’s Europol breach in May, in which the threat actor said that “For Official Use Only” (FOUO) documents were stolen.
“Compromised data: Alliance employees, FOUO source code, PDFs, Documents for recon and guidelines,” the threat actor said.
According to IntelBroker, the Europol agencies that were breached include the CCSE, cryptocurrencies – EC3, Space – EC3, Europol Platform for Experts, Law Enforcement Form and SIRIUS.
According to VenariX, as seen by Cyber Daily, data could also include personal information such as names, email addresses, and confidential business data.
A sample posted by IntelBroker verifies this and names a number of individuals from different agencies, including the Slovenian Police, Switzerland Law Enforcement and the Austrian Police.
Responding to IntelBroker’s post, Europol released a statement confirming that it was aware of the claims and that it was investigating the incident.
“Europol is aware of the incident and is assessing the situation. Initial actions have already been taken. The incident concerns a Europol Platform for Expert (EPE) closed user group,” Europol said in a statement seen by BleepingComputer.
“No operational information is processed on this EPE application. No core systems of Europol are affected, and therefore, no operational data from Europol has been compromised.”