X

United Nations reportedly suffered a hack, which it tried to keep secret

The UN was targeted in an apparent spy operation last year, but top officials kept quiet, according to the AP.

Abrar Al-Heeti Technology Reporter
Abrar Al-Heeti is a technology reporter for CNET, with an interest in phones, streaming, internet trends, entertainment, pop culture and digital accessibility. She's also worked for CNET's video, culture and news teams. She graduated with bachelor's and master's degrees in journalism from the University of Illinois at Urbana-Champaign. Though Illinois is home, she now loves San Francisco -- steep inclines and all.
Expertise Abrar has spent her career at CNET analyzing tech trends while also writing news, reviews and commentaries across mobile, streaming and online culture. Credentials
  • Named a Tech Media Trailblazer by the Consumer Technology Association in 2019, a winner of SPJ NorCal's Excellence in Journalism Awards in 2022 and has three times been a finalist in the LA Press Club's National Arts & Entertainment Journalism Awards.
Abrar Al-Heeti
2 min read
UN

The United Nations was reportedly targeted by hackers last year.

Getty Images

United Nations networks in Geneva and Vienna suffered a hack last year as part of an apparent spy operation, which was kept under wraps by top officials, according to a Wednesday report by the Associated Press. It's not clear who the hackers were or how much data they accessed. 

Dozens of servers were reportedly compromised in places including the UN's human rights office, where sensitive data is collected, according to an internal confidential document leaked to The New Humanitarian

"Staff at large, including me, were not informed," Ian Richards, president of the Staff Council at the United Nations, told the AP. "All we received was an email (on Sept. 26) informing us about infrastructure maintenance work."

The internal document reportedly says 42 servers were "compromised," while another 25 were "suspicious." It also says hackers exploited a flaw in Microsoft's SharePoint software to gain access to the networks, but it's not clear what kind of malware was used, according to the report. 

A UN official, who asked to remain anonymous, reportedly told the AP that given the sophistication of the attack, it's possible a state-backed actor was responsible. They added that "systems have since been reinforced."

The UN didn't immediately respond to a request for comment. 

The leaked report from Sept. 20 reportedly says logs that would have exposed what hackers did within UN networks were "cleared." Additionally, some of the accounts that were accesseed belong to domain administrators, who have access to all user accounts, according to the report. 

The hack at the UN human rights office wasn't severe, spokesman Rupert Colville told the AP. "We face daily attempts to get into our computer systems," he reportedly told the publication. "This time, they managed, but it did not get very far. Nothing confidential was compromised."

The earliest hacking activity seems to have taken place in July and was noticed in August, UN spokesman Stephane Dujarric reportedly told the AP, adding that that "the methods and tools used in the attack indicate a high level of resource, capability and determination."

Security experts say the UN's decision to keep the hack a secret from staff was a "terrible decision," since it's important to alert people and let them know what to look out for. 

First published Jan. 30, 3:31 p.m. PT.
Update, 3:44 p.m.: Adds more details.