Friday, January 15, 20:31
Home security Phishing campaigns target UN, UNICEF and Red Cross

Phishing campaigns target UN, UNICEF and Red Cross

PhishingPhishing attacks are very common nowadays. In the last few months one phishing campaign targeted big organizations that take care of protection human rights. Some of them are Red Crossh, h UNICEF and some of its programs ΟΗΕ (UN World Food and the UN Development).

The attack was discovered by them researchers the company's security Lookout. According to the company, the attack affected the sites and their sites servers of organizations.

It was a long time before the sites that were affected were identified.

None of the phishing sites discovered by Lookout researchers existed at Google Safe Browsing, a database that contains malicious links and helps the web browsers to warn users. Therefore, the users they will not be notified if they visit any of these sites.

Researchers contacted the organizations to inform them of the attacks. They also notified law enforcement agencies.

A UN spokesman says the organization is advising members to activate control multi-factor identity.

Who is behind these attacks?

Researchers said this is not yet known. It could be a typical phishing campaign by a criminal group or come from hacking groups that act in the interests of governments.

"We can not say for sure where it came from," said Jeremy Richards, lead researcher at Lookout.

"The motive for the attack is to violate them credentials Okta and Microsoft accounts to access them. "Once they gain access, hackers can attack or steal information."

One member of one of these organizations stated that hackers often target such organizations.

A lot governments pay hacking teams to attack human rights organizations for stealing information about investigations, tracking people reporting incidents to organizations, or obtaining information on members of organizations.

But it is not just the governments that target these organizations. Such attacks are carried out by hackers who have financial incentives (eg BEC scammers, who breach accounts to steal money).

Η Phishing campaign is underway

According to researchers, the campaign is still ongoing. The servers that host the phishing pages are active. Phishing pages contain malicious code, which logs members' passwords.

In the table below you can see the pages that were affected by the attack:


Please enter your comment!
Please enter your name here

Absent Mia
Absent Mia
Being your self, in a world that constantly tries to change you, is your greatest achievement


Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...

What are the best and most affordable 5G phones for 2021

The market will soon be flooded with mid-range 5G devices. Everything that happens will be really exciting: you will be able to ...

Verified Twitter accounts in a cryptocurrency scam with the name of Elon Musk violated!

Lately, hackers have been violating verified Twitter accounts in a cryptocurrency giveaway scam, in which the name of the CEO is used ...

Classiscam: Fraudsters "fake" brands and deceive users of European markets!

Dozens of criminal gangs publish fake ads in popular online markets, to attract unsuspecting users to "fraudulent" commercial sites or phishing ...

iOS 14.4: Displays a notification for repairs with non-genuine cameras

Starting with the iPhone 11, Apple has added a notification to iOS that tells the user when the device has a ...