Cyberattack on ICRC compromises data of 515,000 vulnerable people
By Kasmira Jefford
A cyberattack against the International Committee of the Red Cross (ICRC) has compromised the personal data of more than 515,000 “highly vulnerable people”, including those separated from their families due to conflict and disaster, the organisation announced on Wednesday.
It is unclear who was responsible for the attack but the ICRC said its most pressing concern was that confidential information could be shared publicly. So far, there is no indication the data has been leaked.
“We are all appalled and perplexed that this humanitarian information would be targeted and compromised,” said Robert Mardini, ICRC’s director-general.
The Geneva-based humanitarian organisation provides protection and assistance for victims of war and other situations of violence.
“This cyber-attack puts vulnerable people, those already in need of humanitarian services, at further risk.” He appealed to the attackers to “do the right thing” and not to sell, share or leak the information.
The attack was carried out against a Swiss-based firm contracted by the ICRC to store its data, which comes from at least 60 Red Cross and Red Crescent National Societies around the world.
As a result of the breach, the organisation has been forced to shut down its IT systems that run a programme that helps reunite family members that have been separated by conflict, disaster or migration.
“Every day, the Red Cross Red Crescent Movement helps reunite on average 12 missing people with their families. That’s a dozen joyful family reunifications every day. Cyber-attacks like this jeopardise that essential work,” Mardini said.
“We are taking this breach extremely seriously. We are working closely with our humanitarian partners worldwide to understand the scope of the attack and take the appropriate measures to safeguard our data in the future.”
Originally published at https://genevasolutions.news.