United Nations Development Programme (UNDP) investigates data breach

2 weeks ago AndyC

United Nations Development Programme (UNDP) investigates data breach

Pierluigi Paganini
April 19, 2024

The United Nations Development Programme (UNDP) has initiated an investigation into an alleged ransomware attack and the subsequent theft of da

United Nations Development Programme (UNDP) investigates data breach

United Nations Development Programme (UNDP) investigates data breach

Pierluigi Paganini
April 19, 2024

The United Nations Development Programme (UNDP) has initiated an investigation into an alleged ransomware attack and the subsequent theft of data.

The United Nations Development Programme (UNDP) is investigating an alleged ransomware attack that resulted in data theft.

The United Nations Development Programme (UNDP) is a United Nations agency tasked with helping countries eliminate poverty and achieve sustainable economic growth and human development.

The cyber attack recently targeted the IT infrastructure of the Agency in UN City, Copenhagen.

On March 27, UNDP became aware that a data-extortion threat actor had stolen data, including human resources and procurement information.

“On March 27, UNDP received a threat intelligence notification that a data-extortion actor had stolen data which included certain human resources and procurement information.” reads the statement published by the Agency. “Actions were immediately taken to identify a potential source and contain the affected server as well as to determine the specifics of the exposed data and who was impacted.” 

UNDP is investigating the security incident to determine the scope of the cyberattack. The agency is keeping individuals affected by the breach updated and sharing information with other stakeholders, including its partners across the UN system.

“UNDP takes this incident extremely seriously and we reiterate our dedication to data security. We are committed to continue working to detect and minimize the risk of cyber-attacks.” continues the statement.

UNDP did not share details about the attack, however, on March 27, 2024, the ransomware group 8base added the agency to its Tor leak site (the Tor leak site is unavailable at the time of this writing).

8base UNDP
Source RansomFeed Project

The extortion group as yet to publish the stolen data.

Pierluigi Paganini

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

(SecurityAffairs – hacking, United Nations Development Programme)

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , , , , , , , , , ,

More Stories

Smashing Security podcast #370: The closed loop conundrum, default passwords, and Baby Reindeer

Smashing Security podcast #370: The closed loop conundrum, default passwords, and Baby Reindeer

2 hours ago AndyC
Ex-NSA employee sentenced to 262 months in prison for attempting to transfer classified documents to Russia

Ex-NSA employee sentenced to 262 months in prison for attempting to transfer classified documents to Russia

8 hours ago AndyC
Cuttlefish targets enterprise-grade SOHO routers

Cuttlefish targets enterprise-grade SOHO routers

8 hours ago AndyC
A flaw in the R programming language could allow code execution

A flaw in the R programming language could allow code execution

8 hours ago AndyC
Thrilled to Share My Experience at RSA 2024! | Dr. Erdal Ozkaya

Thrilled to Share My Experience at RSA 2024! | Dr. Erdal Ozkaya

14 hours ago AndyC
Muddling Meerkat, a mysterious DNS Operation involving China's Great Firewall

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

14 hours ago AndyC

You may have missed

Identity Verification and AI Challenge Australian Businesses

Identity Verification and AI Challenge Australian Businesses

1 hour ago AndyC
Let’s dive in! Amperity’s CTO on Gen AI as catalyst for digital transformation

Let’s dive in! Amperity’s CTO on Gen AI as catalyst for digital transformation

1 hour ago AndyC
Ip.Glass first in Australia to achieve all Fortinet specialisations

Ip.Glass first in Australia to achieve all Fortinet specialisations

1 hour ago AndyC
Industrial sector sees 17% drop in ransomware attacks in Q1 2024

Industrial sector sees 17% drop in ransomware attacks in Q1 2024

1 hour ago AndyC
UK ICO and Ofcom Joint Statement on Regulation of Online Services

UK ICO and Ofcom Joint Statement on Regulation of Online Services

1 hour ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.