Total Tests:

Credentials of WHO, World Bank & NIH officials shared online

By Jay Jay for teiss
Thursday, April 23, 2020

According to information obtained by BBC, the leaked email addressses and passwords numbered over 25,000, including 9,938 from the National Institute of Health (NIH), 6,857 from the Centers for Disease Control and Prevention (CDC), 5,120 from the World Bank, 2,732 from the World Health Organization (WHO), 269 from the Gates Foundation, and 21 from the Wuhan Institute of Virology.

Ilia Kolochenko, Founder & CEO of ImmuniWeb, told Teiss that it seems these credentials are coming from public or semi-public collections of stolen credentials, which are widely available on the Dark Web marketplaces and hacking forums.

"Most of these types of password collections contain a considerable number of redundant, outdated or even deliberately fake data. Given that most business-critical systems now use 2FA and other security mechanisms to prevent password-reuse attacks, I don’t see any material risks stemming from the reported “leak”.

"The impacted organizations should, however, rapidly conduct an internal investigation to ascertain they didn’t fall victims to a sophisticated data breach amid pandemic," he added. Read Full Article


Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a Technical Question?

Our security experts will answer within
one business day. No obligations.

Have a Sales Question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
*
Your data will stay private and confidential