The United Nations’ aviation company has confirmed that hackers have compromised its methods, and accessed hundreds of data saved in its inside recruitment database.
The admission got here after a hacker known as “Natohub” claimed on a underground discussion board on Monday that they’d stolen information and put the knowledge up on the market.
The Worldwide Civil Aviation Group (ICAO), which units world requirements and rules for aviation security and safety, confirmed in a assertion printed on its web site that roughly 42,000 of its recruitment data courting from April 2016 to July 2024 had certainly been stolen.
The safety breach has uncovered private particulars entered by job candidates into ICAO’s methods, together with names, e-mail addresses, dates of delivery, and employment historical past.
In response to the company, the breach has not uncovered extra delicate data corresponding to monetary particulars, passwords, passport particulars, or paperwork uploaded by people when making use of for jobs.
Moreover, ICAO emphasised that the hack was restricted to its recruitment information, and had not impacted any methods associated to aviation security or safety operations.
The hacker, in the meantime, claimed of their publish on the BreachForums 2 web site that they’d additionally accessed candidates’ dwelling addresses, genders, academic backgrounds, and marital statuses.
The aviation company, which is headquartered in Montreal, says that it’s figuring out who had been impacted by the info breach, and could be notifying affected people.
This isn’t the primary time that the UN’s aviation company has suffered by the hands of hackers. In November 2016, hackers linked to China hacked the ICAO, stealing worker information, and spreading malware through a watering gap assault.
Journalists in 2019 claimed that the ICAO had tried to cowl up the hack, fearful that it might present them in a foul mild after investigators “discovered a community stuffed with holes, with safety vulnerabilities that ought to have been flagged years earlier.”
There are prone to be suspicions that the most recent hack of the ICAO can also be the work of hackers backed by China.
“ICAO takes the privateness and safety of private data extraordinarily severely. We’ll present additional updates as our investigation progresses,” stated a spokesperson for the company.