"UN Hacked: Attackers Got in Via SharePoint Vulnerability"
The United Nations (UN) was affected by a breach in the summer of 2019 and was kept secret until now. The attack started in July 2019, when the adversaries were able to compromise a server located at the UN Office in Vienna through a security hole in Microsoft SharePoint, that got patched in February 2019. The hole was left unpatched by the United Nations IT staff, which allowed the adversaries to gain access. The compromised servers included 33 in the UN Office at Geneva, three at OHCHR in Geneva, and at least four in the Vienna office. The adversaries were able to download sensitive data that could have far-reaching repercussions for staff, individuals, and organizations communicating with and doing business with the United Nations. It is still unknown who is behind the attack.
Help Net Security reports: "UN Hacked: Attackers Got in Via SharePoint Vulnerability"