News Authentication

Hacktivists Crack United Nations, Publish User Data

Tim Wilson

See more from Tim
Connect directly with Tim: Bio  |  Contact

TeamPoison might have broken into UN Development Program website

Tim Wilson December 01, 2011

A hacktivist group called TeamPoison (TeaMP0isoN) has leaked more than 100 usernames, email addresses, and passwords belonging to the United Nations, claiming that the UN is guilty of corruption.

The user data appears to belong to individuals at the United Nations Development Programme (UNDP), Organisation for Economic Co-operation and Development (OECD), UNICEF, World Health Organisation (WHO), and other groups, according to news reports.

More Security Insights

White Papers
More >>
Reports
More >>
Webcasts
More >>

The gang noted, when publishing its stash on PasteBin, that some of the user IDs appeared to have a blank password.

Reports indicate that the hackers were able to take advantage of a vulnerability on the United Nations Development Program website to extract the IDs, email address, and passwords of users. The UN told reporters that the information obtained was from an old server and contains no current or valuable information. The accounts obtained are no longer active, the UN says.

The UN is not saying exactly how the attack occurred. "The question now is how?," the hacktivist group said. "We will let the so called 'security experts' over at the UN figure that out. Have a nice day."

TeamPoison recently announced that it is joining forces with Anonymous on a new initiative dubbed "Operation Robin Hood," targeting banks and financial institutions.

Have a comment on this story? Please click "Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Tim Wilson

See more from Tim
Connect directly with Tim: Bio  |  Contact

Related Reading

News

Commentary

Most Popular

On the Web

More On the Web»

Slideshow

Dark Reading Discussions

Start the Discussion


InformationWeek encourages readers to engage in spirited, healthy debate, including taking us to task. However, InformationWeek moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. InformationWeek further reserves the right to disable the profile of any commenter participating in said activities.

Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.