Sunday

21st Jan 2018

Hackers break into OECD computer system

  • OECD ministerial meeting. The body's spokesman said: 'What we know is it's quite a sophisticated attack' (Photo: oecd.org)

The OECD, the Paris-based club of the world's 33 richest countries, has been successfully hacked by people looking for sensitive information on money laundering, high-level corruption and tax evasion.

OECD spokesman Stephen Di Biasio told EUobserver by phone from France on Thursday (4 November) that the body first detected "unusual" activity in its IT network in August and is still battling to get malware out of its computers three months later despite calling in help from the French security services and private cyber-defence companies.

Thank you for reading EUobserver!

Subscribe now for a 30 day free trial.

  1. €150 per year
  2. or €15 per month
  3. Cancel anytime

EUobserver is an independent, not-for-profit news organization that publishes daily news reports, analysis, and investigations from Brussels and the EU member states. We are an indispensable news source for anyone who wants to know what is going on in the EU.

We are mainly funded by advertising and subscription revenues. As advertising revenues are falling fast, we depend on subscription revenues to support our journalism.

For group, corporate or student subscriptions, please contact us. See also our full Terms of Use.

If you already have an account click here to login.

"We've got a team trying to close down their points of entry, but we're not in a position today to say we've cleared them out of our system," he said.

"What we know is it's quite a sophisticated attack. We've got quite high levels of security protocols at the OECD and this has been able to bypass those security measures ... What we are seeing is that it's not a destructive attack. It's obviously fishing for information. Because the OECD works in such a broad array of areas, they are searching around to see what they can get."

Mr Di Biasio said the malware appears to have got in via a USB memory stick and that the attacks are coming from "different geographical areas, quite a few points in Asia." He was unable to say if the assault involves a government or a private entity.

"The suspicion is it came in via USB keys. Our agents travel around the world. They often go to conferences - there are exchanges of information, exchanges of USB keys."

The OECD describes itself as a body which "brings together the governments of countries committed to democracy and the market economy." It collects economic data and conducts inter-governmental talks on issues including high-level government and corporate corruption, money laundering and tax evasion. Its members include 20 EU countries, as well as Canada, Israel, Japan, Switzerland, Turkey and the US.

News of the hack first came out in the specialist, Paris-based publication Intelligence Online on Wednesday, one day before a major EU cyber-security exercise.

The EU simulation, Cyber Europe 2010, is being organised by Enisa, the EU's Crete-based information security agency, and the Joint Research Centre, the European Commission's science wing in Brussels. Modeled on the larger US exercise, Operation Cyber Storm III, launched earlier this year, the EU project is billed as the first-ever pan-European effort of its type.

The exercise began at 10am Brussels time on Thursday and is to last until the evening of the same day. It consists of attempts to install and block fake malware on "critical online services" by around 130 experts sitting at their computers in an operations centre in Crete and in remote locations around Europe.

The exercise involves 20 EU countries plus Norway and Switzerland. EU member states Bulgaria, Cyprus, Luxembourg, Malta, Poland, Slovenia and Spain, as well as non-EU country Iceland, are taking part as observers. The UK's Office of Cyber Security and CERT, the Computer Emergency Response Team in Estonia, are among those at the heart of the exercise.

"We will have electronic elections in March, so we have also been conducting our own internal exercises concerning that," CERT spokeswoman Katrin Pargmae told this website.

Commenting on the outcome of Thursday's experiment, Enisa spokesman Ulf Bergrstrom noted: "If we do find holes and gaps in procedures and channels we will firstly need to plug these holes before we can reveal where they need to be plugged."

Asked if Nato was involved in this simulation, since it is active in the field of cyber defence, Jonathan Todd, a spokesman for the EU commission said: "No. This is the first time such an exercise is being organised, but in future we may look at more complex scenarios."

The European Commission in September proposed a new law to put hackers in jail for up to five years and to give Enisa new powers to fight internet crime.

German coalition deal aims for 'Macron-lite' EU renewal

Merkel and Schulz clear the first hurdle of coalition talks, but the SPD's full membership backing is still needed. The likely coalition parties express support for Macron's eurozone reform ideas, but remain cautious.

Uber is a transport service, EU court rules

Ruling means that national governments have the right to demand that Uber drivers request the same permits and authorisations required of taxi drivers.

News in Brief

  1. Germany confirms attendance at air quality summit
  2. Nearly half of 'fixed' Dieselgate cars show problems
  3. YouTube, Twitter, Facebook up hate speech deletion
  4. UK mulls bridge to France
  5. German far-right float anti-asylum bill
  6. EU Parliament to investigate glyphosate-decision process
  7. 'Mutagenesis' falls outside EU's GMO rules, says EU top lawyer
  8. Decision on Polish MEP's Nazi-era slur postponed

Stakeholders' Highlights

  1. Nordic Council of MinistersNordic Solutions for Sustainable Cities: New Grants Awarded for Branding Projects
  2. Mission of China to the EUTrade Between China, Belt and Road Countries up 15%
  3. Nordic Council of MinistersOresund Inspires Other EU Border Regions to Work Together to Generate Growth
  4. Mission of China to the EUTrade Between China, Belt and Road Countries up 15%
  5. AJC Transatlantic InstituteAJC Calls on EU to Sanction Iran’s Revolutionary Guards, Expel Ambassadors
  6. Dialogue PlatformRoundtable on "Political Islam, Civil Islam and The West" 31 January
  7. ILGA EuropeFreedom of Movement and Same-Sex Couples in Romania – Case Update!
  8. EU2017EEEstonia Completes First EU Presidency, Introduced New Topics to the Agenda
  9. Bio-Based IndustriesLeading the Transition Towards a Post-Petroleum Society
  10. ACCAWelcomes the Start of the New Bulgarian Presidency
  11. Mission of China to the EUPremier Li and President Tusk Stress Importance of Ties at ASEM Summit
  12. EU2017EEVAT on Electronic Commerce: New Rules Adopted

Latest News

  1. Middle East, Messi and missing MEPs on the agenda This WEEK
  2. Instagram and Google Plus join EU anti-hate speech drive
  3. EU wants 'entrepreneurship' in education systems
  4. UK loses EU satellite centre to Spain
  5. Pay into EU budget for market access, Macron tells May
  6. Ethiopian regime to get EU migrants' names
  7. EU to lend Greece up to €7bn more next week
  8. Nato prepares to take in Macedonia

Stakeholders' Highlights

  1. European Jewish CongressChair of EU Parliament Working Group on Antisemitism Condemns Wave of Attacks
  2. Counter BalanceA New Study Challenges the Infrastructure Mega Corridors Agenda
  3. Dialogue PlatformThe Gülen Community: Who to Believe - Politicians or Actions?" by Thomas Michel
  4. Plastics Recyclers Europe65% Plastics Recycling Rate Attainable by 2025 New Study Shows
  5. European Heart NetworkCommissioner Andriukaitis' Address to EHN on the Occasion of Its 25th Anniversary
  6. ACCACFOs Risk Losing Relevance If They Do Not Embrace Technology
  7. UNICEFMake the Digital World Safer for Children & Increase Access for the Most Disadvantaged
  8. European Jewish CongressWelcomes Recognition of Jerusalem as the Capital of Israel and Calls on EU States to Follow Suit
  9. Mission of China to the EUChina and EU Boost Innovation Cooperation Under Horizon 2020
  10. European Gaming & Betting AssociationJuncker’s "Political" Commission Leaves Gambling Reforms to the Court
  11. AJC Transatlantic InstituteAJC Applauds U.S. Recognition of Jerusalem as Israel’s Capital City
  12. EU2017EEEU Telecom Ministers Reached an Agreement on the 5G Roadmap