Please ensure Javascript is enabled for purposes of website accessibility

Trump Says No Summit Deal With Putin Over Ukraine War, Talks Were ‘Very Productive’

21 hours ago

Madera County Man Arrested in Fatal Crash Case

24 hours ago

Man Fleeing an Immigration Raid Dies After Running Onto LA Freeway

1 day ago

Kevin McCarthy, Redistricting Commission’s Popularity Stand in Newsom’s Way

1 day ago

California Man Safe After High-Tech Rescue From Behind Sequoia Waterfall

1 day ago

California Legislature’s Final Weeks Could Decide Delta Water Tunnel’s Fate

1 day ago

US Consumer Sentiment Weakens in August, Inflation Expectations Rise

1 day ago

Trump Names Rosner as Chair of Energy Regulator

2 days ago
Leaked Report Shows United Nations Suffered Hack
gvw_ap_news
By Associated Press
Published 6 years ago on
January 29, 2020

Share

GENEVA — Sophisticated hackers infiltrated U.N. offices in Geneva and Vienna last year in an apparent espionage operation, and their identity and the extent of the data they obtained is unknown.

“It’s as if someone were walking in the sand, and swept up their tracks with a broom afterward. There’s not even a trace of a clean-up.” a U.N. official 
An internal confidential document from the United Nations, leaked to The New Humanitarian and seen by T he Associated Press, says dozens of servers were compromised including at the U.N. human rights office, which collects sensitive data and has often been a lightning rod of criticism from autocratic governments for exposing rights abuses.
Asked about the report, one U.N. official told the AP that the hack appeared “sophisticated” and that the extent of the damage remained unclear, especially in terms of personal, secret or compromising information that may have been stolen. The official, who spoke only on condition of anonymity to speak freely about the episode, said systems have since been reinforced.
The skill level was so high it is possible a state-backed actor might have been behind it, the official said.
“It’s as if someone were walking in the sand, and swept up their tracks with a broom afterward,” the official said. “There’s not even a trace of a clean-up.”
The leaked Sept. 20 report says logs that would have betrayed the hackers’ activities inside the U.N. networks — what was accessed and what may have been siphoned out — were “cleared.” It also shows that among accounts known to have been accessed were those of domain administrators — who by default have master access to all user accounts in their purview.

The Intrusion Definitely Looks Like Espionage

“Sadly … still counting our casualties,” the report says.
Jake Williams, CEO of the cybersecurity firm Rendition Infosec and a former U.S. government hacker, said the fact that the hackers cleared the network logs indicates they were not top flight. The most skilled hackers — including U.S., Russian and Chinese agents — can cover their tracks by editing those logs instead of clearing them.
“The intrusion definitely looks like espionage,” said Williams, noting that the active directory component — where all users’ permissions are managed — from three different domains were compromised: those of United Nations offices in Geneva and Vienna and of the Office of the High Commissioner for Human Rights.
“This, coupled with the relatively small number of infected machines, is highly suggestive of espionage,” he said after viewing the report. “The attackers have a goal in mind and are deploying malware to machines that they believe serve some purpose for them.”
Any number of intelligence agencies from around the globe are likely interested in infiltrating the U.N., Williams said.
The hack was not severe at the U.N. human rights office, said its spokesman, Rupert Colville.
“We face daily attempts to get into our computer systems ,” Colville said. ” This time, they managed, but it did not get very far. Nothing confidential was compromised.”

Photo of Michelle Bachelet, United Nations High Commissioner for Human Rights
FILE – In this April 9, 2019, file photo Michelle Bachelet, United Nations High Commissioner for Human Rights, attends a press conference at the Cultural Center of Spain, in Mexico City. An internal confidential document from the United Nations, leaked to The New Humanitarian and seen by The Associated Press, says that dozens of servers were “compromised” at offices in Geneva and Vienna.Those include the U.N. human rights office, which has often been a lightning rod of criticism from autocratic governments for its calling-out of rights abuses. (AP Photo/Marco Ugarte, File)

42 Servers Were ‘Compromised’ and Another 25 Were Deemed ‘Suspicious’

U.N. spokesman Stephane Dujarric said the attack “resulted in a compromise of core infrastructure components” and was “determined to be serious.” The earliest detected activity related to the intrusion occurred in July and it was detected in August, he said in response to emailed questions.

“The damage related to this specific attack has been contained, and additional mitigation measures implemented. Nevertheless the threat of future attacks continues, and the United Nations Secretariat detects and responds to multiple attacks of various level of sophistication on a daily basis.” — U.N. spokesman Stephane Dujarric
He said the world body does not have enough information to determine who might have been behind the incursion, but added “the methods and tools used in the attack indicate a high level of resource, capability and determination.
“The damage related to this specific attack has been contained, and additional mitigation measures implemented,” Dujarric wrote. “Nevertheless the threat of future attacks continues, and the United Nations Secretariat detects and responds to multiple attacks of various level of sophistication on a daily basis.”
The internal document from the U.N. Office of Information and Technology said 42 servers were “compromised” and another 25 were deemed “suspicious,” nearly all at the sprawling Geneva and Vienna offices. Three of the “compromised” servers belonged to Human Rights agency, which is located across town from the main U.N. office in Geneva, and two were used by the U.N. Economic Commission for Europe.
The report says a flaw in Microsoft’s SharePoint software was exploited by the hackers to infiltrate the networks but that the type of malware used was not known, nor had technicians identified the command and control servers on the internet used to exfiltrate information. Nor was it known what mechanism was used by the hackers to maintain their presence on the infiltrated networks.

Hack Comes Amid Rising Concerns About Computer or Mobile Phone Vulnerabilities

Security researcher Matt Suiche, a French entrepreneur based in Dubai who founded the cybersecurity firm Comae Technologies, reviewed the report and said it appeared entry was gained through an anti-corruption tracker at the U.N. Office of Drugs and Crime.
The report mentions a range of IP addresses in Romania that may have been used to stage the infiltration, and Williams said one is reported to have some neighbors with a history of hosting malware.
Technicians at the United Nations office in Geneva, the world body’s European hub, on at least two occasions worked through weekends in recent months to isolate the local U.N. data center from the internet, re-write passwords and ensure the systems were clean. Twenty machines had to be rebuilt, the report says.
The hack comes amid rising concerns about computer or mobile phone vulnerabilities, both for large organizations like governments and the U.N. as well as for individuals and businesses.
Last week, U.N. human rights experts asked the U.S. government to investigate a suspected Saudi hack that may have siphoned data from the personal smartphone of Jeff Bezos, the Amazon founder and owner of The Washington Post, in 2018. On Tuesday, T he New York Times’s bureau chief in Beirut, Ben Hubbard, said technology researchers suspected an attempted intrusion into his phone around the same time.

Potentially Affected Are Staff in the Office of the Special Envoy for Syria

The United Nations, and its human rights office, is particularly sensitive, and could be a tempting target. The U.N. High Commissioner for Human Rights, Michelle Bachelet, and her predecessors have called out, denounced and criticized alleged war crimes, crimes against humanity and less severe rights violations and abuses in places as diverse as Syria and Saudi Arabia.

“There’s a lot of our data that could have been hacked, and we don’t know what that data could be.” — Ian Richards, president of the Staff Council at the United Nations
Dozens of independent human rights experts who work with the U.N. human rights office have greater leeway — and fewer political and financial ties to the governments that fund the United Nations and make up its membership — to denounce alleged rights abuses.
Ian Richards, president of the Staff Council at the United Nations, expressed concern about the safety of U.N. networks.
“There’s a lot of our data that could have been hacked, and we don’t know what that data could be,” said Richards, whose group advocates for the welfare of employees of the world body.
Potentially affected, for example, are staff in the office of the special envoy for Syria carrying out sensitive investigations and human rights staffers interviewing witnesses.
“How much should U.N. staff trust the information infrastructure the U.N. is providing them?” Richards asked. “Or should they start putting their information elsewhere?”
[activecampaign form=29]

DON'T MISS

What Are Fresno Real Estate Experts Predicting for 2025 and Beyond?

DON'T MISS

First California EV Mandates Hit Automakers This Year. Most Are Not Even Close

DON'T MISS

How Do We Bridge America’s New Segregation?

DON'T MISS

Micky MaKenzie, Bold Pup With a Big Heart, Ready for a New Home

DON'T MISS

Trump Says Xi Told Him China Will Not Invade Taiwan While He Is US President

DON'T MISS

Melania Trump Sends Letter to Putin About Abducted Children

DON'T MISS

Category 4 Hurricane Erin Continues to Intensify, NHC Says

DON'T MISS

US Stops Visitor Visas for People From Gaza

DON'T MISS

Trump Says No Summit Deal With Putin Over Ukraine War, Talks Were ‘Very Productive’

DON'T MISS

Tulare County Man Guilty of Multiple Lewd Acts on Child

DON'T MISS

Sanger Police Arrest Second Suspect Charged in Juvenile Shooting

DON'T MISS

Pismo’s Manager Stuck in ICE Detention for Long Ago Teen Crime

UP NEXT

US Stops Visitor Visas for People From Gaza

UP NEXT

Trump Says No Summit Deal With Putin Over Ukraine War, Talks Were ‘Very Productive’

UP NEXT

Washington Sues to Stop Federal Takeover of Police Department

UP NEXT

US Health Chief Kennedy Says No Plans for 2028 Presidential Run

UP NEXT

Redistricting Fight Continues as Texas Governor Abbott Calls New Special Legislative Session

UP NEXT

Israel in Talks to Resettle Gaza Palestinians in South Sudan, Sources Say

UP NEXT

DOJ Sues California to End Enforcement of Emissions Standards for Trucks

UP NEXT

UN Rights Office Says Israeli Settlement Plan Breaks International Law

UP NEXT

US Consumer Sentiment Weakens in August, Inflation Expectations Rise

UP NEXT

Far-Right Israeli Minister Pays Surprise Visit to Jailed Palestinian Leader

Melania Trump Sends Letter to Putin About Abducted Children

6 hours ago

Category 4 Hurricane Erin Continues to Intensify, NHC Says

6 hours ago

US Stops Visitor Visas for People From Gaza

6 hours ago

Trump Says No Summit Deal With Putin Over Ukraine War, Talks Were ‘Very Productive’

21 hours ago

Tulare County Man Guilty of Multiple Lewd Acts on Child

22 hours ago

Sanger Police Arrest Second Suspect Charged in Juvenile Shooting

22 hours ago

Pismo’s Manager Stuck in ICE Detention for Long Ago Teen Crime

23 hours ago

Complaint Filed Against Judge in NW Fresno Luxury Apartment Case

23 hours ago

Madera County Man Arrested in Fatal Crash Case

24 hours ago

Fresno Two-Vehicle Crash Near Highway 168 Entrance Causes Traffic Delays

24 hours ago

How Do We Bridge America’s New Segregation?

America’s democracy is under threat. President Donald Trump smashes alliances, upends norms and tramples the Constitution. So it’s normal to...

5 hours ago

3D illustration, Symbolic image on the topic of division, exclusion
5 hours ago

How Do We Bridge America’s New Segregation?

Micky MaKenzie, a bold yet sweet pup who loves belly rubs, car rides and playing with dogs of all sizes, is now recovered from surgery and ready for a forever home with his best buddy Sunny. (Mell's Mutts)
5 hours ago

Micky MaKenzie, Bold Pup With a Big Heart, Ready for a New Home

President Donald Trump holds a press conference following his meeting with Russian President Vladimir Putin to negotiate an end to the war in Ukraine, at Joint Base Elmendorf-Richardson, in Anchorage, Alaska, U.S., August 15, 2025. REUTERS/Kevin Lamarque
6 hours ago

Trump Says Xi Told Him China Will Not Invade Taiwan While He Is US President

U.S. first lady Melania Trump speaks at the White House in Washington, D.C., U.S., May 8, 2025. (Reuters File)
6 hours ago

Melania Trump Sends Letter to Putin About Abducted Children

Hurricane Erin, which is the first hurricane of the 2025 Atlantic season and has developed into a dangerous Category 4 hurricane, moves westward near Puerto Rico in a composite satellite image August 16, 2025. CIRA/NOAA/Handout via REUTERS
6 hours ago

Category 4 Hurricane Erin Continues to Intensify, NHC Says

United States Department of State logo and U.S. flag are seen in this illustration taken April 23, 2025. REUTERS/Dado Ruvic/Illustration
6 hours ago

US Stops Visitor Visas for People From Gaza

U.S. President Donald Trump goes to shake hands with Russian President Vladimir Putin, as they meet to negotiate for an end to the war in Ukraine, at Joint Base Elmendorf-Richardson in Anchorage, Alaska, U.S., August 15, 2025. (Reuters/Kevin Lamarque)
21 hours ago

Trump Says No Summit Deal With Putin Over Ukraine War, Talks Were ‘Very Productive’

A Farmersville man, Jose Martinez-Delgadillo, was found guilty on Wednesday, August 13, 2025, of multiple lewd acts on a child, possession of child pornography, and other crimes, and faces over 22 years in prison with lifetime sex offender registration. (Tulare County DA)
22 hours ago

Tulare County Man Guilty of Multiple Lewd Acts on Child

Search

Help continue the work that gets you the news that matters most.

Send this to a friend