More or less. Unless it's something to do with the employee's privacy or something to that effect. Doesn't mean the criminals are the good guys here, since they're trying to make bank on it instead of releasing it to the public -- if it's something that the public has an interest in.
Was going to ask what's the data, but
> Compromised Data: Source Codes, CI/CD Pipelines, API Tokens, Access Tokens, Confidential Documents, Configuration Files, Terraform Files, SQL Files, Hardcoded Credentials and more!
Yeah, right. No wonder nobody bothered to buy and take a look. More of an insult to ESA, than a "data breach".
Pay them a one-way ticket into space.
Shouldn't this data be public anyway?
More or less. Unless it's something to do with the employee's privacy or something to that effect. Doesn't mean the criminals are the good guys here, since they're trying to make bank on it instead of releasing it to the public -- if it's something that the public has an interest in.
> didn't hear back, with an automated response informing us that the Agency's offices are closed for the New Year holiday
This is so on-brand for EU organizations.
You say that as if it's a bad thing?
In this context (massive data breach) - it is.
Ah yes, responding to the media during holidays will make the data crawl back to their servers!
If this were a private business, people would be piling on and calling for the executives to face a firing squad.
"People" here meaning in particular the types that frequent this very message board.
What does their comms team have to do with the massive data breach?