April 19, 2024 at 02:10PM
The UNDP is investigating a cyberattack in which threat actors stole human resources data from its IT systems in Copenhagen. The organization is assessing the incident’s impact and working with affected individuals to protect their personal information. While the specific threat group has not been identified, a ransomware gang claims responsibility and has leaked sensitive documents online.
From the meeting notes, it is clear that the United Nations Development Programme (UNDP) has experienced a cyberattack, resulting in the theft of human resources data. The attack took place in late March at the UN City in Copenhagen, and the organization has been diligently addressing the incident since then. They are currently investigating the nature and scope of the breach and are working to assess the impact on individuals affected by the stolen information.
Moreover, the group responsible for the cyberattack, identified as the 8Base ransomware gang, has publicized confidential UNDP documents on their dark web leak site, including sensitive information such as personal data, accounting data, employment contracts, and more. This underscores the severity and potential impact of the breach.
It is noteworthy to mention that the UNDP is not the first United Nations entity to experience a data breach, as the United Nations Environmental Programme (UNEP) and UN networks in Geneva and Vienna have also encountered similar incidents in the past, indicating a broader concern for the security of UN data.
These meeting notes highlight the significance of the cyberattack on UNDP and the need for comprehensive measures to address the breach, contain its impact, and safeguard the affected individuals from potential misuse of their personal information.