who flag

World Health Organization Facing Cyber Attacks During Coronavirus Response

A malicious site imitating the WHO’s email system was created to collect the account information of the organization’s employees.

  • By Haley Samsel
  • Mar 26, 2020

The World Health Organization is facing a “more than two-fold increase” in cyber attacks amid its efforts to organize a worldwide response to the coronavirus pandemic, according to a Reuters report.

Flavio Aggio, the WHO’s chief information security officer, said that the identity of the “elite” hackers who attempted to break into the organization’s cyber infrastructure is unclear. Their efforts were unsuccessful, Aggio added.

“There has been a big increase in targeting of the WHO and other cybersecurity incidents,” Aggio told Reuters. “There are no hard numbers, but such compromise attempts against us and the use of (WHO) impersonations to target others have more than doubled.”

Cybersecurity expert Alexander Urbelis flagged the attempted attack to Reuters after noticing that a group of hackers had created a malicious site imitating the WHO’s internal email system. The activity began around March 13, Urbelis said.

“I realized quite quickly that this was a live attack on the World Health Organization in the midst of a pandemic,” Urbelis said.

Read More: As Hospitals, Nursing Homes Battle Coronavirus, Security Companies Offer Assistance With Cybersecurity Attacks

He could not identify who was responsible, but several sources told Reuters that they suspect DarkHotel, a group of advanced hackers, is behind the incident.

Costin Raiu, the head of global research and analysis at cybersecurity firm Kapersky, said that while he could not confirm that DarkHotel was behind the WHO incident, the same type of attack is being used against healthcare organizations in the wake of the coronavirus crisis.

“At times like this, any information about cures or tests or vaccines relating to coronavirus would be priceless and the priority of any intelligence organization of an affected country,” Raiu told Reuters.

Several cybersecurity firms have been tracking the creation of coronavirus-related websites, finding that a high percentage are malicious and trying to scam consumers out of their money and financial information.

Urbelis said that there are still at least 2,000 new domains registered each day, many of which contain malware or are scamming people: “I’ve never seen anything like this.”

About the Author

Haley Samsel is an Associate Content Editor for the Infrastructure Solutions Group at 1105 Media.

Featured

Most   Popular

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.”

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.