Elite hackers tried to break into the WHO earlier this month, sources said, part of what a senior agency official said was a more than two-fold increase in cyberattacks.
The identity of the hackers was unclear and the effort was unsuccessful, WHO Chief Information Security Officer Flavio Aggio said.
However, he warned that hacking attempts against the agency and its partners have soared as they battle to contain COVID-19, which has killed more than 15,000 worldwide.
The attempted break-in at the WHO was first flagged to Reuters by Alexander Urbelis, a cybersecurity expert and attorney with the New York-based Blackstone Law Group, which tracks suspicious Internet domain registration activity.
Urbelis said that he picked up on the activity around March 13, when a group of hackers he had been following activated a malicious site mimicking the WHO’s internal e-mail system.
“I realized quite quickly that this was a live attack on the World Health Organization in the midst of a pandemic,” he said.
Urbelis said he did not know who was responsible, but two other sources briefed on the matter said they suspected an advanced group of hackers known as DarkHotel, which has been conducting cyberespionage operations since at least 2007.
Messages sent to e-mail addresses maintained by the hackers went unreturned.
Asked by Reuters about the incident, Aggio confirmed that the site spotted by Urbelis had been used in an attempt to steal passwords from multiple agency staffers.
“There has been a big increase in targeting of the WHO and other cybersecurity incidents,” Aggio said in a telephone interview. “There are no hard numbers, but such compromise attempts against us and the use of [WHO] impersonations to target others have more than doubled.”
The WHO published an alert last month warning that hackers are posing as the agency to steal money and sensitive information from the public.
Government officials in the US, Britain and elsewhere have also issued cybersecurity warnings about the dangers of a newly remote workforce as people disperse to their homes to work and study because of the coronavirus pandemic.
The motives in the case identified by Reuters are not clear.
UN agencies, the WHO among them, are regularly targeted by digital espionage campaigns and Aggio said that he did not know who precisely at the organization the hackers had in their sights.
Cybersecurity firms including Romania’s Bitdefender and Moscow-based Kaspersky said that they have traced many of DarkHotel’s operations to East Asia — an area that has been particularly affected by the coronavirus.
Specific targets have included government employees and business executives in places such as China, North Korea, Japan and the US.
Costin Raiu, director of global research and analysis at Kaspersky, could not confirm that DarkHotel was responsible for the WHO attack, but said that the same malicious Web infrastructure had also been used to target other healthcare and humanitarian organizations in the past few weeks.
“At times like this, any information about cures or tests or vaccines relating to coronavirus would be priceless and the priority of any intelligence organization of an affected country,” he said.
Officials and cybersecurity experts have warned that hackers of all stripes are seeking to capitalize on international concern over the spread of the coronavirus.
Urbelis said that he has tracked thousands of coronavirus-themed Web sites being set up daily, many of them obviously malicious.
“It’s still around 2,000 a day,” he said. “I have never seen anything like this.”
James Watson — the Nobel laureate co-credited with the pivotal discovery of DNA’s double-helix structure, but whose career was later tainted by his repeated racist remarks — has died, his former lab said on Friday. He was 97. The eminent biologist died on Thursday in hospice care on Long Island in New York, announced the Cold Spring Harbor Laboratory, where he was based for much of his career. Watson became among the 20th century’s most storied scientists for his 1953 breakthrough discovery of the double helix with researcher partner Francis Crick. Along with Crick and Maurice Wilkins, he shared the
OUTRAGE: The former strongman was accused of corruption and responsibility for the killings of hundreds of thousands of political opponents during his time in office Indonesia yesterday awarded the title of national hero to late president Suharto, provoking outrage from rights groups who said the move was an attempt to whitewash decades of human rights abuses and corruption that took place during his 32 years in power. Suharto was a US ally during the Cold War who presided over decades of authoritarian rule, during which up to 1 million political opponents were killed, until he was toppled by protests in 1998. He was one of 10 people recognized by Indonesian President Prabowo Subianto in a televised ceremony held at the presidential palace in Jakarta to mark National
US President Donald Trump handed Hungarian Prime Minister Viktor Orban a one-year exemption from sanctions for buying Russian oil and gas after the close right-wing allies held a chummy White House meeting on Friday. Trump slapped sanctions on Moscow’s two largest oil companies last month after losing patience with Russian President Vladimir Putin over his refusal to end the nearly four-year-old invasion of Ukraine. However, while Trump has pushed other European countries to stop buying oil that he says funds Moscow’s war machine, Orban used his first trip to the White House since Trump’s return to power to push for
LANDMARK: After first meeting Trump in Riyadh in May, al-Sharaa’s visit to the White House today would be the first by a Syrian leader since the country’s independence Syrian President Ahmed al-Sharaa arrived in the US on Saturday for a landmark official visit, his country’s state news agency SANA reported, a day after Washington removed him from a terrorism blacklist. Sharaa, whose rebel forces ousted long-time former Syrian president Bashar al-Assad late last year, is due to meet US President Donald Trump at the White House today. It is the first such visit by a Syrian president since the country’s independence in 1946, according to analysts. The interim leader met Trump for the first time in Riyadh during the US president’s regional tour in May. US envoy to Syria Tom Barrack earlier
RSS