United Nations Breach: Jan, 2021

Notes:

In January of 2021 Sakura Samurai breached the United Nations. This is a short blog post on the United Nations breach with media sources on it to check out.


Sakura Samurai breached over 100k pieces of PII from the United Nations, but could have easily gotten a lot more/much higher number. When you get the access and are already seeing tons of pieces of PII, going further to make the number higher is counter-productive to who you’re trying to help if you already know how to get in and show proper evidence of not just access but PII — making it a breach. Just get the report together, compile all your screen shots, and reach out to get the problem fixed. The United Nations was already pwned.

Here’s a cool analysis of the breach:

Here’s a link to John’s blog on the United Nations breach:

https://johnjhacking.com/blog/unep-breach/

Here’s some news articles on the UN breach:

https://www.securitymagazine.com/articles/94325-united-nations-suffers-data-breach

https://www.techradar.com/news/united-nations-suffers-major-data-breach

https://siliconangle.com/2021/01/11/united-nations-data-breach-exposes-details-100000-employees/

https://blog.gitguardian.com/united-nations-databreach-jan/

By Robert Willis (rej_ex)

I'm an infosec, cybersecurity professional who enjoys continuously learning and hacking. I also collect and make comics books. I role with my crew -- Sakura Samurai. Follow me on Twitter @rej_ex.

Leave a comment

Your email address will not be published. Required fields are marked *