Skip to main content

UN among victims of biggest series of cyber attacks ever

united nations building in nycNews of yet another computer security breach has emerged which appears to be so monumental that the word ‘hack’ seems inadequate – how about a mega-hack? Or simply a thwack?

According to a Reuters report on Wednesday, security company McAfee believes it has uncovered the largest series of cyber attacks yet, with 72 big organizations from around the world hit. McAfee said it thought a single “state actor” perpetrated the intrusions, and though it refused to name names, Reuters said that “one security expert who has been briefed on the hacking said the evidence points to China.”

Related Videos

Among the victims are the governments of the US, Taiwan, India, South Korea, Vietnam and Canada; the United Nations; the Association of Southeast Asian Nations (ASEAN); the International Olympic Committee (IOC); the World Anti-Doping Agency; and a large number of companies, including those in the defense and high-tech industries.

The ongoing attacks are believed to have been carried out over a period of five years, beginning in 2006. McAfee discovered the extent of the intrusions in March of this year.

The company said that hackers had, for example, infiltrated the computer system of the UN Secretariat in Geneva three years ago, hiding undetected for some two years while secretly examining vast swathes of confidential data.

McAfee believes some of the security breaches lasted a month while one, on the Olympic Committee of an unnamed Asian nation, continued sporadically for almost two-and-a-half years.

In a report issued by McAfee on Wednesday that was examined by Reuters, Dmitri Alperovitch, the security company’s vice president of threat research, wrote: “This is the biggest transfer of wealth in terms of intellectual property in history. The scale at which this is occurring is really, really frightening. Even we were surprised by the enormous diversity of the victim organizations and were taken aback by the audacity of the perpetrators.”

He continued: “What is happening to all this data … is still largely an open question. However, if even a fraction of it is used to build better competing products or beat a competitor at a key negotiation (due to having stolen the other team’s playbook), the loss represents a massive economic threat.”

And evidently in no mood to mince his words, he added: “Companies and government agencies are getting raped and pillaged every day. They are losing economic advantage and national secrets to unscrupulous competitors.”

All of the victims have been notified by McAfee and are now in touch with local law enforcement agencies.

Recent cyber attacks by hacking groups Anonymous and LulzSec have been getting a lot of attention, but they somehow pale into insignificance when put up against the scale of this latest, more sinister, mass security breach, carried out by what McAfee is calling one “state actor.”

Editors' Recommendations

Ransomware victims are refusing to pay — but is it working?
A depiction of a hacked computer sitting in an office full of PCs.

A new report has highlighted how ransomware payments to hackers have begun to slow down, with victims continuously opting to not cave in to demands.

Coveware, a company that provides ransomware decryption services, revealed some interesting analytics relating to the state of ransomware during the second quarter of 2022.

Read more
Hacker steals 1 billion people’s records in unprecedented data breach
A depiction of a hacker breaking into a system via the use of code.

An anonymous hacker has stated that he has successfully infiltrated the Shanghai police department’s database. In doing so, he apparently extracted personal information of a staggering one billion Chinese citizens.

The individual, 'ChinaDan', took sole responsibility for the data breach. As reported by Reuters and PCMag, he detailed the incident on hacker forum Breach Forums.

Read more
Hackers just launched the largest HTTPS DDoS attack in history
A depiction of a hacker breaking into a system via the use of code.

The largest ​​HTTPS distributed denial-of-service (DDoS) attack in history materialized last week, Cloudflare has confirmed.

Cloudflare, which specializes in DDoS mitigation, announced that it successfully prevented the record-breaking onslaught before it could inflict any real damage.

Read more