A new report has surfaced online revealing striking details of a cyber attack targeting the United Nations. Through this report, researchers have found that the United Nations was hacked last year, allegedly exposing huge volumes of data to the attackers.
According to a report from The New Humanitarian (TNH) and seen by the Associated Press (AP), the UN suffered a cyberattack. Specifically, the perpetrators hacked the United Nations servers last year pilfering sensitive data. What’s odd here is that the UN didn’t disclose the breach.
According to TNH, the report that remained hidden until recently reveals that the attack occurred in mid-July 2019. The attackers compromised dozens of UN servers located in Europe, primarily affecting three offices. These include the UN Office at Geneva, UN Office at Vienna, and the UN Office of the High Commissioner for Human Rights (OHCHR) headquarters in Geneva.
The major effect of the attack happened at the Geneva Office affecting 33 servers. Whereas, the incident affected 3 servers at the OHCR Geneva, and 4 at the UN Office in Vienna.
Consequently, the breached servers allowed the attackers to pilfer staff details, health insurance, and other data. As stated by TNH,
Apart from being a serious cybersecurity breach, what worsened the problem was the concealing of the matter from the personnel. According to the President UN Staff Council, Ian Richards, based in Geneva,
The UN spokesperson Stéphane Dujarric told TNH,
The scope of the attack, according to what the senior UN IT official told TNH, was far larger than what the UN implied.
Regarding the attackers, a UN official told AP, that they were smart enough to remove all traces.
More specifically, the attackers cleared all logs via domain administrator-level accounts that already possess master access to all accounts.