It's a shame so much ire is being directed at the victim of this attack and not the perpetrators.
1) Spies spy, it's what they do.
2) This attack is not the same as mass hoovering of metadata, they keys taken cannot be used indiscriminately because they are only used between the handset and base station.
3) Any attempt at mass hoovering would require intercept equipment in the vicinity of every cell site in the target country. Impractical.
4) An attack using these keys forces the handset to drop to 2G, if that were happening on a mass scale someone would notice.
5) These spies have no need of the keys for targets in friendly countries, they can simply request an intercept.
So this raiding party facilitates targeted attacks against parties of interest in unfriendly countries. Pretty much what GCHQ and the NSA ought to be up to.
What I am left wondering is why within the EU they needed to go on a raiding party. It should have been possible to acquire what they needed via gagged court orders. Did they suspect a leak that would reveal their actions should they take the legal route?