Elite hackers tried to break into the WHO earlier this month, sources said, part of what a senior agency official said was a more than two-fold increase in cyberattacks.
The identity of the hackers was unclear and the effort was unsuccessful, WHO Chief Information Security Officer Flavio Aggio said.
However, he warned that hacking attempts against the agency and its partners have soared as they battle to contain COVID-19, which has killed more than 15,000 worldwide.
The attempted break-in at the WHO was first flagged to Reuters by Alexander Urbelis, a cybersecurity expert and attorney with the New York-based Blackstone Law Group, which tracks suspicious Internet domain registration activity.
Urbelis said that he picked up on the activity around March 13, when a group of hackers he had been following activated a malicious site mimicking the WHO’s internal e-mail system.
“I realized quite quickly that this was a live attack on the World Health Organization in the midst of a pandemic,” he said.
Urbelis said he did not know who was responsible, but two other sources briefed on the matter said they suspected an advanced group of hackers known as DarkHotel, which has been conducting cyberespionage operations since at least 2007.
Messages sent to e-mail addresses maintained by the hackers went unreturned.
Asked by Reuters about the incident, Aggio confirmed that the site spotted by Urbelis had been used in an attempt to steal passwords from multiple agency staffers.
“There has been a big increase in targeting of the WHO and other cybersecurity incidents,” Aggio said in a telephone interview. “There are no hard numbers, but such compromise attempts against us and the use of [WHO] impersonations to target others have more than doubled.”
The WHO published an alert last month warning that hackers are posing as the agency to steal money and sensitive information from the public.
Government officials in the US, Britain and elsewhere have also issued cybersecurity warnings about the dangers of a newly remote workforce as people disperse to their homes to work and study because of the coronavirus pandemic.
The motives in the case identified by Reuters are not clear.
UN agencies, the WHO among them, are regularly targeted by digital espionage campaigns and Aggio said that he did not know who precisely at the organization the hackers had in their sights.
Cybersecurity firms including Romania’s Bitdefender and Moscow-based Kaspersky said that they have traced many of DarkHotel’s operations to East Asia — an area that has been particularly affected by the coronavirus.
Specific targets have included government employees and business executives in places such as China, North Korea, Japan and the US.
Costin Raiu, director of global research and analysis at Kaspersky, could not confirm that DarkHotel was responsible for the WHO attack, but said that the same malicious Web infrastructure had also been used to target other healthcare and humanitarian organizations in the past few weeks.
“At times like this, any information about cures or tests or vaccines relating to coronavirus would be priceless and the priority of any intelligence organization of an affected country,” he said.
Officials and cybersecurity experts have warned that hackers of all stripes are seeking to capitalize on international concern over the spread of the coronavirus.
Urbelis said that he has tracked thousands of coronavirus-themed Web sites being set up daily, many of them obviously malicious.
“It’s still around 2,000 a day,” he said. “I have never seen anything like this.”
A coronavirus-free tropical island nestled in the northern Pacific might seem the perfect place to ride out a pandemic, but residents on Palau said that life right now is far from idyllic. The microstate of 18,000 people is among a dwindling number of places on Earth that still report zero cases of COVID-19 as figures mount daily elsewhere. The disparate group also includes Samoa, Turkmenistan, North Korea and bases on the frozen continent of Antarctica. A dot in the ocean hundreds of kilometers from its nearest neighbors, Palau is surrounded by the vast Pacific Ocean, which has acted as a buffer against the
Dutch scientists have found the coronavirus in a city’s wastewater before COVID-19 cases were reported, demonstrating a novel early warning system for the disease. SARS-CoV-2 — the virus that causes COVID-19 — is often excreted in an infected person’s stool. Although it is unlikely that sewage will become an important route of transmission, the pathogen’s increasing circulation in communities would increase the amount of it flowing into sewer systems, Gertjan Medema and colleagues at the KWR Water Research Institute in Nieuwegein said on Monday. They detected genetic material from the coronavirus at a wastewater treatment plant in Amersfoort on March 5, before
‘LIKE A CASSANDRA’: Chinese residents of Prato went into self-imposed lockdown and warned their Italian neighbors about what was coming, but were ignored In the storm of infection and death sweeping Italy, one big community stands out to health officials as remarkably unscathed — the 50,000 ethnic Chinese who live in the town of Prato. Two months ago, the country’s Chinese residents were the target of what Amnesty International described as shameful discrimination, the butt of insults and violent attacks by people who feared that they would spread the coronavirus through Italy. However, in the Tuscan town of Prato, home to Italy’s single biggest Chinese community, the opposite has been true. Once scapegoats, they are now held up by authorities as a model for early,
TRUE TOLL? Some Chinese are skeptical about official data, particularly given the overwhelmed medical system and initial attempts to cover up the outbreak The long lines and stacks of urns greeting family members of the dead at funeral homes in Wuhan, China, are spurring questions about the true scale of casualties at the epicenter of the COVID-19 outbreak, renewing pressure on a Chinese government struggling to control its containment narrative. The families of those who succumbed to the coronavirus in the city, where the disease first emerged, were allowed to pick up their cremated ashes at eight funeral homes last week. As they did, photographs circulated on Chinese social media of thousands of urns being ferried in. Outside one funeral home, trucks shipped in about 2,500