Hackers breached the United Nations’ computer networks in early 2021 and made off with a trove of data that could be used to target agencies within the intergovernmental organization.
The hackers likely got in using the stolen username and password of a UN employee purchased off the dark web.
The hackers, whoever breached the UN didn’t damage any of its systems but instead collected information about the UN’s computer networks.
TPRM report: https://scoringcyber.rankiteo.com/company/united-nations
"id": "uni155417123",
"linkid": "united-nations",
"type": "Breach",
"date": "04/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Government',
'location': 'Global',
'name': 'United Nations',
'type': 'Intergovernmental Organization'}],
'attack_vector': 'Stolen Credentials',
'data_breach': {'data_exfiltration': True,
'type_of_data_compromised': 'Information about the UN’s '
'computer networks'},
'date_detected': 'Early 2021',
'description': 'Hackers breached the United Nations’ computer networks in '
'early 2021 and made off with a trove of data that could be '
'used to target agencies within the intergovernmental '
'organization.',
'impact': {'data_compromised': True},
'initial_access_broker': {'entry_point': 'Stolen username and password of a '
'UN employee purchased off the dark '
'web'},
'motivation': 'Information Gathering',
'title': 'United Nations Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Stolen username and password of a UN employee '
'purchased off the dark web'}