Security breach on ECHA website

2021-06-17

We have been informed that an unauthorised external user has uploaded malicious documents to the ECHA websites by exploiting a weakness in our website.

We took immediate actions to prevent any further damage, therefore currently and as temporary measure, it is not possible to access documents and pictures throughout the ECHA websites.

The unauthorised user managed to upload documents which may contain links to malicious sources in a specific folder in our system. There is no direct link in our website to such documents, they can be found only by skilfully using search engine services, therefore, you are not directly exposed to any risk.

However, if you stumble across any suspicious file – e.g. documents not at all related to ECHA business which may contain malicious content, etc. – while browsing our websites, please let us know immediately.

Since the vulnerability is isolated only to a specific action, we can reassure that any data has been secure all the time.

We are working hard for a permanent fix to the problem. We apologise for any issue caused and highly appreciate your patience, cooperation and vigilance.

The ECHA team

Read More

ECHA, 17 June 2021
; https://echa.europa.eu/-/security-breach-on-echa-website