The United Nations’ Worldwide Civil Aviation Group (ICAO) has confirmed {that a} menace actor has stolen roughly 42,000 information after hacking into its recruitment database.
This follows ICAO’s announcement on Monday that it was investigating what it described as a “potential info security incident.”
Whereas the UN company did not present further particulars, this got here two days after a menace actor utilizing the “Natohub” deal with leaked an archive of 42,000 paperwork reportedly stolen from ICAO on the BreachForums hacking discussion board.
In keeping with Natohub’s claims, the allegedly stolen paperwork include names, dates of delivery, addresses, cellphone numbers, e mail addresses, and training and employment info.
One other menace actor stated the leaked archive incorporates 2GB of information with info on 57,240 distinctive emails.
In the present day, ICAO confirmed the hyperlink in an up to date assertion despatched to BleepingComputer: “The reported info security incident entails roughly 42,000 recruitment utility information information from April 2016 to July 2024 claimed to be launched by the menace actor often known as Natohub.”
The company says the stolen information incorporates recruitment info, however the breach did not influence candidates’ monetary and different delicate information.
“The compromised information consists of recruitment-related info that candidates entered into our system, comparable to names, e mail addresses, dates of delivery, and employment historical past. The affected information doesn’t embrace monetary info, passwords, passport particulars, or any paperwork uploaded by candidates,” ICAO stated.
“We will affirm that this incident is restricted to the recruitment database and doesn’t have an effect on any methods associated to aviation security or security operations.”
ICAO added that it applied further security measures to guard its methods from future assaults, continues to be assessing the incident’s influence, and is working to determine and notify all people affected by this breach.
Risk actors additionally hacked UN networks in Vienna and Geneva in July 2019 utilizing a Sharepoint exploit, having access to workers information, medical insurance, and business contract information.
Moreover, the United Nations Improvement Programme (UNDP) began investigating a cyberattack in April 2024 following a breach claimed by the 8Base ransomware gang, whereas the United Nations Environmental Programme (UNEP) disclosed a data breach in January 2021 after over 100,000 worker information with private info uncovered on-line.
