An internal confidential document from the UN was leaked, saying that 42 servers were “compromised” and another 25 were deemed “suspicious,” nearly all at its offices in Geneva and Vienna.
Three of the compromised servers belonged to the Office of the High Commissioner for Human Rights, and two were used by the U.N. Economic Commission for Europe.
The U.N. document also highlights a vulnerability in the software program Microsoft Sharepoint, which could have been used for the hack.
“Dozens” of servers for the United Nations were hacked in July 2019.
The UN is using “diplomatic immunity” as a reason why they are not obliged to notify those affected or to divulge what material was accessed.
This seems like it should be a bigger deal. https://t.co/EHYk4Gu3e4
— Leah McElrath (@leahmcelrath) January 29, 2020
Experts Comments
Linkedin Message
@Shay Nahari, Head of Red Team Services, provides expert commentary at @Information Security Buzz.
"The compromise of core infrastructures at the UN is troubling...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Shay Nahari, Head of Red Team Services, provides expert commentary at @Information Security Buzz.
"The compromise of core infrastructures at the UN is troubling...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Linkedin Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"I believe no one should be covering up attacks in any way, shape or form. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"I believe no one should be covering up attacks in any way, shape or form. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Linkedin Message
@Ed Williams, Director EMEA, SpiderLabs, provides expert commentary at @Information Security Buzz.
"Organisations who have maturity in this space tend to act quicker and patch ‘critical’ systems in a timely manner. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Ed Williams, Director EMEA, SpiderLabs, provides expert commentary at @Information Security Buzz.
"Organisations who have maturity in this space tend to act quicker and patch ‘critical’ systems in a timely manner. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Linkedin Message
@Craig Hinkley, CEO, provides expert commentary at @Information Security Buzz.
"This is a global problem that we’re contending with...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Craig Hinkley, CEO, provides expert commentary at @Information Security Buzz.
"This is a global problem that we’re contending with...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Linkedin Message
@Joe Lareau, Senior Security Engineer, provides expert commentary at @Information Security Buzz.
"One critical step all of these entities can take now is to monitor for tactics. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Joe Lareau, Senior Security Engineer, provides expert commentary at @Information Security Buzz.
"One critical step all of these entities can take now is to monitor for tactics. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Tal Zamir, Founder and CTO, provides expert commentary at @Information Security Buzz.
"Organizations should consider isolation approaches that range from creating network segments...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments
Facebook Message
@Tal Zamir, Founder and CTO, provides expert commentary at @Information Security Buzz.
"Organizations should consider isolation approaches that range from creating network segments...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/united-nations-hacked-security-expert-comments