O United Nations Development Program (UNDP in its acronym in English) announced this week that it is investigate a cyber attack which resulted in information compromise.
In a statement, the agency states that the attack targeted the IT infrastructure at UN City, a complex based in Copenhagen, Denmark, and which has a dozen UN agencies.
UNDP became aware of a data exfiltration on March 27 that reportedly included “procurement and human resources information".
The agency also said that they were “actions taken to immediately identify the potential source and contain the affected server, as well as determine the specifics of the exposed data and who was affected".
The group responsible was 8base, which published the UNDP on its website on March 27th, publishing the stolen files about a week later. The group claims it gained access to invoices, accounting documents, certificates, confidential agreements, contracts and personal information. Given that the information was published, UNDP will not have paid the ransom.
Zaproxy dolore alias impedit expedita quisquam.