UN aviation agency probe involves alleged release of recruitment data
A recent U.N. aviation agency information security incident involved the alleged release of thousands of recruitment application data records from April 2016 to July 2024, the Montreal-based body told Reuters on Tuesday. The 42,000 records, which the threat actor known as Natohub claimed to have released, do not affect any systems related to aviation safety or security, the International Civil Aviation Organization said in response to a Reuters query. "We can confirm that this incident is limited to the recruitment database and does not affect any systems related to aviation safety or security operations," ICAO said. The claim of an ICAO-related incident has been circulating for days following a post to a data breach-focused website popular with cybercriminals. Reuters could not immediately locate contact information for Natohub. Earlier on Tuesday a source told Reuters that the incident was linked to the release of job applicants' records, with a sample made public. ICAO said on Monday it was investigating a reported hacker's claim that the records had been stolen. The investigation is still ongoing and ICAO has implemented additional security measures to protect the agency's systems, it said. "We are also working to identify and notify affected individuals," ICAO said. ICAO said in the statement that the compromised data includes recruitment-related information entered by job applicants, such as names, email addresses, dates of birth, and employment history.<br/>
https://portal.staralliance.com/cms/news/hot-topics/2025-01-08/general/un-aviation-agency-probe-involves-alleged-release-of-recruitment-data
https://portal.staralliance.com/cms/logo.png
UN aviation agency probe involves alleged release of recruitment data
A recent U.N. aviation agency information security incident involved the alleged release of thousands of recruitment application data records from April 2016 to July 2024, the Montreal-based body told Reuters on Tuesday. The 42,000 records, which the threat actor known as Natohub claimed to have released, do not affect any systems related to aviation safety or security, the International Civil Aviation Organization said in response to a Reuters query. "We can confirm that this incident is limited to the recruitment database and does not affect any systems related to aviation safety or security operations," ICAO said. The claim of an ICAO-related incident has been circulating for days following a post to a data breach-focused website popular with cybercriminals. Reuters could not immediately locate contact information for Natohub. Earlier on Tuesday a source told Reuters that the incident was linked to the release of job applicants' records, with a sample made public. ICAO said on Monday it was investigating a reported hacker's claim that the records had been stolen. The investigation is still ongoing and ICAO has implemented additional security measures to protect the agency's systems, it said. "We are also working to identify and notify affected individuals," ICAO said. ICAO said in the statement that the compromised data includes recruitment-related information entered by job applicants, such as names, email addresses, dates of birth, and employment history.<br/>
