United Nations hit by possible state-sponsored attack

At least 40 servers were compromised over three separate European offices, according to a leaked report

Hackers managed to infiltrate a slew of servers at three separate United Nation offices last year in what is reported as apparent espionage action. 

The extent of the hack, along with the identity of the perpetrators are unknown, and the attack itself has only just come to light thanks to a leaked document reported by The New Humanitarian

At least 40 servers at UN offices in Vienna, Geneva and the UN Office of the High Commissioner for Human rights - also located in Geneva - were compromised, according to the leaked document dated 20 September 2019. 

The UN suffered a "major meltdown", an unnamed UN official told TNH, and "Multiple workshops and assessments have been conducted to verify that the exploited vulnerabilities have been mitigated."

The cyber attack was so "sophisticated" that it was possibly the work of a state-backed actor, another official told the Associated Press

"It's as if someone were walking in the sand, and swept up their tracks with a broom afterward," the official said. "There's not even a trace of a cleanup."

The attack began in the middle of July last year and was first reported by an IT official working at the Geneva office on 30 August: "We are working under the assumption that the entire domain is compromised. The attacker doesn't show signs of activity so far, we assume they established their position and are dormant."

It also included systems for the UN's human rights and human resources departments and breached some administrator accounts. The affected system included core infrastructure where user and management passwords, system controls and security firewalls were stored. Despite not being told what had happened, staff were asked to change their passwords.

Related Resource

How do vulnerabilities get into software?

90% of security incidents result from exploits against defects in software

Download now

"The attack resulted in a compromise of core infrastructure components," said UN spokesperson Stéphane Dujarric, according to TNH. "As the exact nature and scope of the incident could not be determined, [the UN offices in Geneva and Vienna] decided not to publicly disclose the breach."

The UN has diplomatic status and is therefore immune from the legal process, so there is no regulation enforcing it to disclose breaches of data. 

Featured Resources

Digital document processes in 2020: A spotlight on Western Europe

The shift from best practice to business necessity

Download now

Four security considerations for cloud migration

The good, the bad, and the ugly of cloud computing

Download now

VR leads the way in manufacturing

How VR is digitally transforming our world

Download now

Deeper than digital

Top-performing modern enterprises show why more perfect software is fundamental to success

Download now

Recommended

What is hacktivism?
hacking

What is hacktivism?

13 Oct 2020
Microsoft: Iranian hackers are exploiting ZeroLogon flaw
Security

Microsoft: Iranian hackers are exploiting ZeroLogon flaw

6 Oct 2020
The Ritz suffers data breach after hackers pose as staff
data breaches

The Ritz suffers data breach after hackers pose as staff

17 Aug 2020
Russia hacked Liam Fox's personal email to steal trade documents
phishing

Russia hacked Liam Fox's personal email to steal trade documents

4 Aug 2020

Most Popular

The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

5 Oct 2020
Google blocked record-breaking 2.5Tbps DDoS attack in 2017
Security

Google blocked record-breaking 2.5Tbps DDoS attack in 2017

19 Oct 2020
What is a 502 bad gateway and how do you fix it?
web hosting

What is a 502 bad gateway and how do you fix it?

5 Oct 2020