SecurityBaseline.eu launches monitoring 67,000 EU governments across 200,000 domains, exposing illegal tracking cookies, public phpMyAdmin panels, and broken email encryption.
Key Takeaways
3,081 government sites place tracking cookies without consent, violating GDPR; YouTube (2,077), Google Ads (842), and Facebook (293) are top sources.
1,070 phpMyAdmin portals are publicly reachable across 3,529 domains, including two at CSIRT addresses; no EU government financially contributes to the open-source project.
99% of governmental email uses poor encryption; fixing this requires ongoing process changes, not one-time patches.
21 metrics across 32 countries are visualized on 1,827 daily-rebuilt maps; Italy’s subdomain trick deflates its scores by shifting measurement to parent domains.
The project pre-notified tens of thousands of government contacts three months before launch, providing remediation time before public disclosure.
Hacker News Comment Review
No substantive HN discussion yet; the only thread activity is a suggestion to repost as Show HN with a trimmed headline.
