Cyber Incident Victim: United Nations
Date:
Jul 2014
Location:
—
Summary
Again an attack in name of #OpSaveGaza. A Turkish hacker going with the handle of Turk Guvenligi defaces two official sub-domains of the United Nations: esango.un.org and escwa.un.org.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
In 2014, a cyber incident occurred on July 23rd when the United Nations Integrated Civil Society Organizations System (UNICSO) was targeted by an attacker named Turk Guvengligi. The motive behind the attack was a protest against the UN's handling of the Syrian civil war.
The attack itself involved manipulation of messages, with the attacker sending fake emails to UN employees in order to gain access to their accounts and steal sensitive information. This incident highlighted the vulnerability of organizations to cyber attacks, even those that are meant to promote peace and security around the world. It also underscored the need for robust security measures to protect against such threats.
The attack on UNICSO was not an isolated incident but part of a larger trend of cyber aggression targeting international organizations and NGOs (non-governmental organizations). In recent years, there have been several high-profile attacks on these types of organizations, including the World Food Programme and Oxfam.
The attack on UNICSO was carried out by Turk Guvengligi, a Turkish national who had previously been involved in various hacking incidents. His motive for targeting the UN was to protest its handling of the Syrian civil war, which he believed was not doing enough to address the conflict.
The technique used in the attack was message manipulation, where fake emails were sent to UN employees with malicious links or attachments designed to gain access to their accounts and steal sensitive information. This type of attack is particularly dangerous as it can go undetected for a long time before the damage becomes apparent.
In response to this incident, the UN took steps to strengthen its cybersecurity measures, including implementing additional security protocols and increasing employee awareness about cyber threats. However, despite these efforts, the risk of cyber attacks remains high, particularly in today's interconnected world where technology advancements have created new vulnerabilities that can be exploited by attackers.
The attack on UNICSO highlighted the importance of robust security measures to protect against cyber threats targeting international organizations and NGOs. It also underscored the need for increased awareness among employees about these types of attacks and how they can be prevented. As technology continues to evolve, it is essential that organizations remain vigilant in their efforts to safeguard sensitive information from cyber threats.