The United Nations’ aviation company has confirmed that hackers have compromised its techniques, and accessed 1000’s of information saved in its inside recruitment database.
The admission got here after a hacker referred to as “Natohub” claimed on a underground discussion board on Monday that they’d stolen knowledge and put the data up on the market.
The Worldwide Civil Aviation Group (ICAO), which units international requirements and laws for aviation security and safety, confirmed in a statement published on its website that roughly 42,000 of its recruitment information relationship from April 2016 to July 2024 had certainly been stolen.
The safety breach has uncovered private particulars entered by job candidates into ICAO’s techniques, together with names, e mail addresses, dates of beginning, and employment historical past.
In keeping with the company, the breach has not uncovered extra delicate info resembling monetary particulars, passwords, passport particulars, or paperwork uploaded by people when making use of for jobs.
Moreover, ICAO emphasised that the hack was restricted to its recruitment knowledge, and had not impacted any techniques associated to aviation security or safety operations.
The hacker, in the meantime, claimed of their put up on the BreachForums 2 web site that they’d additionally accessed candidates’ dwelling addresses, genders, academic backgrounds, and marital statuses.
The aviation company, which is headquartered in Montreal, says that it’s figuring out who had been impacted by the information breach, and can be notifying affected people.
This isn’t the primary time that the UN’s aviation company has suffered by the hands of hackers. In November 2016, hackers linked to China hacked the ICAO, stealing worker knowledge, and spreading malware through a watering gap assault.
Journalists in 2019 claimed that the ICAO had tried to cowl up the hack, fearful that it might present them in a nasty mild after investigators “discovered a community filled with holes, with safety vulnerabilities that ought to have been flagged years earlier.”
There are prone to be suspicions that the newest hack of the ICAO may additionally be the work of hackers backed by China.
“ICAO takes the privateness and safety of private info extraordinarily severely. We are going to present additional updates as our investigation progresses,” mentioned a spokesperson for the company.
