Friday

20th Jul 2018

Hackers break into OECD computer system

  • OECD ministerial meeting. The body's spokesman said: 'What we know is it's quite a sophisticated attack' (Photo: oecd.org)

The OECD, the Paris-based club of the world's 33 richest countries, has been successfully hacked by people looking for sensitive information on money laundering, high-level corruption and tax evasion.

OECD spokesman Stephen Di Biasio told EUobserver by phone from France on Thursday (4 November) that the body first detected "unusual" activity in its IT network in August and is still battling to get malware out of its computers three months later despite calling in help from the French security services and private cyber-defence companies.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... our join as a group

"We've got a team trying to close down their points of entry, but we're not in a position today to say we've cleared them out of our system," he said.

"What we know is it's quite a sophisticated attack. We've got quite high levels of security protocols at the OECD and this has been able to bypass those security measures ... What we are seeing is that it's not a destructive attack. It's obviously fishing for information. Because the OECD works in such a broad array of areas, they are searching around to see what they can get."

Mr Di Biasio said the malware appears to have got in via a USB memory stick and that the attacks are coming from "different geographical areas, quite a few points in Asia." He was unable to say if the assault involves a government or a private entity.

"The suspicion is it came in via USB keys. Our agents travel around the world. They often go to conferences - there are exchanges of information, exchanges of USB keys."

The OECD describes itself as a body which "brings together the governments of countries committed to democracy and the market economy." It collects economic data and conducts inter-governmental talks on issues including high-level government and corporate corruption, money laundering and tax evasion. Its members include 20 EU countries, as well as Canada, Israel, Japan, Switzerland, Turkey and the US.

News of the hack first came out in the specialist, Paris-based publication Intelligence Online on Wednesday, one day before a major EU cyber-security exercise.

The EU simulation, Cyber Europe 2010, is being organised by Enisa, the EU's Crete-based information security agency, and the Joint Research Centre, the European Commission's science wing in Brussels. Modeled on the larger US exercise, Operation Cyber Storm III, launched earlier this year, the EU project is billed as the first-ever pan-European effort of its type.

The exercise began at 10am Brussels time on Thursday and is to last until the evening of the same day. It consists of attempts to install and block fake malware on "critical online services" by around 130 experts sitting at their computers in an operations centre in Crete and in remote locations around Europe.

The exercise involves 20 EU countries plus Norway and Switzerland. EU member states Bulgaria, Cyprus, Luxembourg, Malta, Poland, Slovenia and Spain, as well as non-EU country Iceland, are taking part as observers. The UK's Office of Cyber Security and CERT, the Computer Emergency Response Team in Estonia, are among those at the heart of the exercise.

"We will have electronic elections in March, so we have also been conducting our own internal exercises concerning that," CERT spokeswoman Katrin Pargmae told this website.

Commenting on the outcome of Thursday's experiment, Enisa spokesman Ulf Bergrstrom noted: "If we do find holes and gaps in procedures and channels we will firstly need to plug these holes before we can reveal where they need to be plugged."

Asked if Nato was involved in this simulation, since it is active in the field of cyber defence, Jonathan Todd, a spokesman for the EU commission said: "No. This is the first time such an exercise is being organised, but in future we may look at more complex scenarios."

The European Commission in September proposed a new law to put hackers in jail for up to five years and to give Enisa new powers to fight internet crime.

EU 'tax lady' hits Google with record fine

Margrethe Vestager has fined the US tech giant with €4.34bn for abusing its market dominance in mobile operating systems - but assured US president Donald Trump that it is not because she does not like America.

MEPs side with Fry over McCartney on copyright

The European Parliament decided to take more time studying proposed changes to the EU's copyright regime, amidst fears of 'upload filters' - and accusations of scaremongering.

Mr Juncker goes to Washington

European Commission president will meet US president Donald Trump before the end of July to try to "de-dramatise" the tense trade relations.

EU's €23bn for high-speed rail had 'low added value'

Court of Auditors says in critical report that Europe does not have a high-speed rail 'network', "only a patchwork of national high-speed lines, planned and built by the member states in isolation".

EU and Japan wave light in Trump's 'darkness'

EU leaders and Japanese prime minister signed a series of agreements, including the EU's biggest trade deal ever, designed as an answer to the disruption of the world order by the US president.

News in Brief

  1. Trump threatens EU over Google fine
  2. Spain withdraws arrest warrant for Catalan separatists
  3. EU readies counter-measures on possible US car tariffs
  4. EU Commission launches probe into Hungary's 'Stop Soros' law
  5. EU warns Turkey on anti-terror bill
  6. Report: EU secretly scorns UK's Brexit paper
  7. Hungary: UN treaty could 'inspire millions' of migrants
  8. Nato reacts after Trump disparages Montenegro

Stakeholders' Highlights

  1. IPHRCivil society asks PACE to appoint Rapporteur to probe issue of political prisoners in Azerbaijan
  2. ACCASocial Mobility – How Can We Increase Opportunities Through Training and Education?
  3. Nordic Council of MinistersEnergy Solutions for a Greener Tomorrow
  4. UNICEFWhat Kind of Europe Do Children Want? Unicef & Eurochild Launch Survey on the Europe Kids Want
  5. Nordic Council of MinistersNordic Countries Take a Stand for Climate-Smart Energy Solutions
  6. Mission of China to the EUChina: Work Together for a Better Globalisation
  7. Nordic Council of MinistersNordics Could Be First Carbon-Negative Region in World
  8. European Federation of Allergy and AirwaysLife Is Possible for Patients with Severe Asthma
  9. PKEE - Polish Energy AssociationCommon-Sense Approach Needed for EU Energy Reform
  10. Nordic Council of MinistersNordic Region to Lead in Developing and Rolling Out 5G Network
  11. Mission of China to the EUChina-EU Economic and Trade Relations Enjoy a Bright Future
  12. ACCAEmpowering Businesses to Engage with Sustainable Finance and the SDGs

Stakeholders' Highlights

  1. Nordic Council of MinistersCooperation in Nordic Electricity Market Considered World Class Model
  2. FIFAGreen Stadiums at the 2018 Fifa World Cup
  3. Mission of China to the EUChina and EU Work Together to Promote Sustainable Development
  4. Counter BalanceEuropean Ombudsman Requests More Lending Transparency from European Investment Bank
  5. FIFARecycling at the FIFA World Cup in Russia
  6. Nordic Council of MinistersOECD Report: Gender Equality Boosts GDP Growth in Nordic Region
  7. Centre Maurits Coppieters“Peace and Reconciliation Is a Process That Takes Decades” Dr. Anthony Soares on #Brexit and Northern Ireland
  8. Mission of China to the EUMEPs Positive on China’s New Measures of Opening Up
  9. Macedonian Human Rights MovementOld White Men are Destroying Macedonia by Romanticizing Greece
  10. Counter BalanceControversial EIB-Backed Project Under Fire at European Parliament
  11. Nordic Council of MinistersIncome Inequality Increasing in Nordic Countries
  12. European Jewish CongressEU Leaders to Cease Contact with Mahmoud Abbas Until He Apologizes for Antisemitic Comments

Join EUobserver

Support quality EU news

Join us