According to Washington Post, unknown activists have posted nearly 25,000 email addresses and passwords allegedly belonging to the National Institutes of Health, the World Health Organization, the Gates Foundation and other groups working to combat the coronavirus pandemic, according to the SITE Intelligence Group, which monitors online extremism and terrorist groups.
SITE was unable to verify whether the email addresses and passwords were authentic. Robert Potter, an Australian cybersecurity expert, said he was able to verify that the WHO email addresses and passwords were real.
The lists, whose origins are unclear, appear to have first been posted to 4chan, a message board notorious for its hateful and extreme political commentary, and later to Pastebin, a text storage site, to Twitter and to far-right extremist channels on Telegram, a messaging app.
Vice’s website, Motherboard obtained the list and said it’s likely that the WHO, CDC, and Gates Foundation have not been hacked directly. Rather, the emails and passwords on the list are likely to have been compiled from a series of unrelated hacks and data breaches. Yet the fact that the information is being accumulated and compiled could signal the potential for attacks against the employees—or against the organizations themselves.
The Gates Foundation said in a statement, “We are monitoring the situation in line with our data security practices. We don’t currently have an indication of a data breach at the foundation.”
According to a KiwiFarms user, there isn’t much information about SARS-COVID-2 virus and most of the files are related to the Ebola crisis and HIV.
On a personal note, I think the hacking group that got into the email servers copied all the important information, before releasing the credentials to the public. We may start to see more docs released in the following days.
We will update the news when we have more details.
Not using a security suite? I suggest you get one and scan your computer or phone ASAP. I recommend Free 30 Days Trial of Eset Cyber Security or Bitdefender Small Business Security.
Also, add your opinion using the comments form below.