Skip to main content

UN among victims of biggest series of cyber attacks ever

united nations building in nycNews of yet another computer security breach has emerged which appears to be so monumental that the word ‘hack’ seems inadequate – how about a mega-hack? Or simply a thwack?

According to a Reuters report on Wednesday, security company McAfee believes it has uncovered the largest series of cyber attacks yet, with 72 big organizations from around the world hit. McAfee said it thought a single “state actor” perpetrated the intrusions, and though it refused to name names, Reuters said that “one security expert who has been briefed on the hacking said the evidence points to China.”

Recommended Videos

Among the victims are the governments of the US, Taiwan, India, South Korea, Vietnam and Canada; the United Nations; the Association of Southeast Asian Nations (ASEAN); the International Olympic Committee (IOC); the World Anti-Doping Agency; and a large number of companies, including those in the defense and high-tech industries.

The ongoing attacks are believed to have been carried out over a period of five years, beginning in 2006. McAfee discovered the extent of the intrusions in March of this year.

The company said that hackers had, for example, infiltrated the computer system of the UN Secretariat in Geneva three years ago, hiding undetected for some two years while secretly examining vast swathes of confidential data.

McAfee believes some of the security breaches lasted a month while one, on the Olympic Committee of an unnamed Asian nation, continued sporadically for almost two-and-a-half years.

In a report issued by McAfee on Wednesday that was examined by Reuters, Dmitri Alperovitch, the security company’s vice president of threat research, wrote: “This is the biggest transfer of wealth in terms of intellectual property in history. The scale at which this is occurring is really, really frightening. Even we were surprised by the enormous diversity of the victim organizations and were taken aback by the audacity of the perpetrators.”

He continued: “What is happening to all this data … is still largely an open question. However, if even a fraction of it is used to build better competing products or beat a competitor at a key negotiation (due to having stolen the other team’s playbook), the loss represents a massive economic threat.”

And evidently in no mood to mince his words, he added: “Companies and government agencies are getting raped and pillaged every day. They are losing economic advantage and national secrets to unscrupulous competitors.”

All of the victims have been notified by McAfee and are now in touch with local law enforcement agencies.

Recent cyber attacks by hacking groups Anonymous and LulzSec have been getting a lot of attention, but they somehow pale into insignificance when put up against the scale of this latest, more sinister, mass security breach, carried out by what McAfee is calling one “state actor.”

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Is ChatGPT creating a cybersecurity nightmare? We asked the experts
A person's hand holding a smartphone. The smartphone is showing the website for the ChatGPT generative AI.

ChatGPT feels pretty inescapable right now, with stories marveling at its abilities seemingly everywhere you look. We’ve seen how it can write music, render 3D animations, and compose music. If you can think of it, ChatGPT can probably take a shot at it.

And that’s exactly the problem. There's all manner of hand-wringing in the tech community right now, with commenters frequently worrying that AI is about to lead to a malware apocalypse with even the most green-fingered hackers conjuring up unstoppable trojans and ransomware.

Read more
These embarrassing passwords got celebrities hacked
dt10 language and tech motorola razr v3 paris hilton

One thing that celebrities have in common with everyday people is that they are also susceptible to cybersecurity breaches. Many public figures have had their private and public tech accounts hacked over the years and these attacks have often been due to them simply having weak passwords that were easy for bad actors to figure out.

Socialites, actors, politicians, and even prominent tech figures are guilty of lazy password practices, and falling victim to cybercrime that has compromised their passwords.
President Donald Trump

Read more
Hackers may have stolen the master key to another password manager
Open padlock cybersecurity

The best password managers are meant to keep all your logins and credit card info safe and secure, but a major new vulnerability has just put users of the KeePass password manager at serious risk of being breached.

In fact, the exploit allows an attacker to steal a KeePass user’s master password in plain text -- in other words, in an unencrypted form -- simply by extracting it from the target computer’s memory. It’s a remarkably simple hack, yet one that could have worrying implications.

Read more