The central bank announced it had shut down its Banks’ Integrated Reporting Dictionary (Bird) website last week, after it was discovered to have been infected with malicious software.

The malware had been injected into a third-party server hosting the website and was detected via a maintenance check conducted by the central bank. Email addresses, names, and titles of around 400 subscribers to the Bird newsletter may have been stolen. The central bank has stressed that neither its internal systems or market-sensitive data was affected by the infection.

The earliest files related the to breach date back to December last year, indicating that the malware could have been operating in the Bird server for up to nine months. The ECB has not decided yet whether it will continue to work with the affected provider. Read more..