SAN FRANCISCO/WASHINGTON/LONDON: Hackers working in the interests of the Iranian government have attempted to break into the personal email accounts of staff at the World Health Organization during the coronavirus outbreak, four people with knowledge of the matter told Reuters.
It is not clear if any accounts were compromised, but the attacks show how the WHO and other organizations at the center of a global effort to contain the coronavirus have come under a sustained digital bombardment by hackers seeking information about the outbreak.
Reuters reported in March that hacking attempts against the United Nations health agency and its partners had more than doubled since the beginning of the coronavirus crisis, which has now killed more than 40,000 worldwide.
The latest effort has been ongoing since March 2 and attempted to steal passwords from WHO staff by sending malicious messages designed to mimic Google web services to their personal email accounts, a common hacking technique known as “phishing,” according to four people briefed on the attacks. Reuters confirmed their findings by reviewing a string of malicious websites and other forensic data.
“We’ve seen some targeting by what looks like Iranian government-backed attackers targeting international health organizations generally via phishing,” said one of the sources, who works for a large technology company that monitors Internet traffic for malicious cyber activity.
WHO spokesman Tarik Jasarevic confirmed that personal email accounts of WHO staff were being targeted by phishing attacks, but said the WHO did not know who was responsible. “To the best of our knowledge, none of these hacking attempts were successful,” he said.
Iran’s government denied any involvement. “These are all sheer lies to put more pressure on Iran,” said a spokesman at Iran’s information technology ministry. “Iran has been a victim of hacking.”
Karim Hijazi, chief executive of cyber intelligence firm Prevailion, shared his recently captured data with Reuters that shows a sophisticated hacking group was actively targeting the global health organization. Reuters couldn’t independently confirm his analysis. Hijazi said the identity of the hackers was difficult to determine, although their techniques appeared advanced.
The intrusion attempts are distinct from others reported by Reuters last week, which sources said were thought to be the work of an advanced group of hackers known as DarkHotel that has previously been active in East Asia — an area that has been particularly affected by the coronavirus.
The motives of the hackers was not clear, but targeting officials at their personal accounts is a longstanding intelligence-gathering technique.
Other details in this phishing attempt point to links with Tehran. For example, Reuters found that the same malicious websites used in the WHO break-in attempts were deployed around the same time to target American academics with ties to Iran.
The related activity — which saw the hackers impersonate a well-known researcher — parallels cases Reuters previously documented where alleged Iranian hackers masqueraded as media figures from organizations such as CNN or The New York Times to trick their targets.
Iran has suffered enormous loss of life from the coronavirus, and infections have reached the inner circle of the country’s leadership.
A person close to US intelligence said he was aware of the Iranian campaign and that such attacks are standard fare during times of international crisis.
While large prizes for intelligence agencies would include coronavirus response plans for various countries or word of effective treatments, more benign data, such as WHO estimates for infection rates, would also be valuable, the person said.
Hackers linked to Iran target WHO staff emails during coronavirus
https://arab.news/b2shx
Hackers linked to Iran target WHO staff emails during coronavirus
- Attacks show how the WHO and other organizations at the center of a global effort to contain the coronavirus have come under a sustained digital bombardment by hackers
- Large prizes for intelligence agencies would include coronavirus response plans for various countries, or word of effective treatments
Finance firms urge ambitious action on plastic pollution
- Curtailing the estimated 400 million metric tonnes of waste produced every year is a crucial part of efforts to protect biodiversity, with microplastics found everywhere from the mountainous Himalayas to staple foods and even human blood
LONDON: A group of 160 financial companies on Friday urged governments to agree a treaty to end plastic pollution that would help spur private sector action, ahead of the next round of global talks in Canada.
The fourth meeting of the Intergovernmental Negotiating Committee on Plastic Pollution (INC-4) is due to be held in Ottawa next week to lay the groundwork for an eventual deal before the end of the year.
Curtailing the estimated 400 million metric tonnes of waste produced every year is a crucial part of efforts to protect biodiversity, with microplastics found everywhere from the mountainous Himalayas to staple foods and even human blood.
To help fix the problem, the finance firms, which include Britain’s biggest investor Legal & General Investment Management and Canadian pension investor CDPQ, called for a policy framework backed up by binding rules.
Among specific steps, the group called for the treaty to set an objective for all public and private finance to be consistent with the goal of eliminating plastic pollution, similar to that in the Paris climate agreement and the Kunming-Montreal global biodiversity framework.
It also called for companies to assess and disclose plastic-related risks and opportunities; clearer plastic-related policies and targets from governments in areas like waste creating and recycling; and for further private investment to be directed to ending plastic pollution.
“A clear transition pathway laid out in the Treaty will help leverage finance at scale for this massive task of ending plastic pollution worldwide,” said Anne-Sophie Castelnau, global head of sustainability at ING, one of the signatories.
Steve Hardman, CEO of Plastic Collective, an NGO which designed the world’s first plastic waste reduction bond alongside Citi and the World Bank, welcomed the support but called for business to provide more financial solutions.
In January, the World Bank issued the $100 million bond to finance plastic-reduction projects in Ghana and Indonesia. Investors will be paid a rate linked to plastic removal credits generated by the projects.
Finnish PM: EU should help end migrant influx from Russia
- European Commission President Ursula von der Leyen visits the border to assess security situation
HELSINKI: The EU should take measures to help Finland stop an influx of migrants via Russia, Finnish Prime Minister Petteri Orpo said.
Finland last year shut its long border with Russia amid a growing number of arrivals from countries including Syria and Somalia.
It accused Moscow of weaponizing migration against the Nordic nation and the EU, an assertion the Kremlin denies.
Finland’s government has closed eight of its nine checkpoints with Russia.
The only one that remains open is dedicated to rail travel and cargo trains mainly run through it.
“We are preparing our legislation, but we also need EU measures,” Orpo said, without elaborating, after visiting the Nordic country’s border with European Commission President Ursula von der Leyen.
Von der Leyen told the same press conference that the EU Commission was working closely with the migrants’ countries of origin, agreeing with Finland’s position.
“What we see is that a state is instrumentalizing poor people to put pressure on another state, so that is a clear security issue,” she said.
She said that the measures taken to deal with migrants from Russia must balance protecting the security of borders and international obligations.
Following Poland and Lithuania’s example on their borders with Belarus, the Finnish government is drafting legislation allowing border guards to block asylum seekers entering the country from Russia.
“We all know how (Russian President Vladimir) Putin and his allies instrumentalize migrants to test our defenses and to try to destabilize us,” von der Leyen told officials.
“Now Putin is focusing on Finland, and this is no doubt in response to your firm support of Ukraine and your accession to NATO.”
Von der Leyen and Orpo flew in a Finnish helicopter over the landscape of forests and towns on the border.
Von der Leyen is campaigning as a conservative European People’s Party bloc member for a second term in office as head of the EU’s powerful executive branch.
Security is a top EPP theme before the June 6-9 European Parliament elections.
Most of the migrants hail from the Middle East and Africa.
Most of them have sought asylum in Finland, a member of the EU and NATO with a population of 5.6 million.
Finland joined NATO in April 2023, ending decades of neutrality after the country’s defeat by the Soviet Union in the Second World War.
In March, Sweden also became a member of the trans-Atlantic alliance.
The move dealt a major blow to Putin, with a historic realignment of Europe’s post-Cold War security landscape triggered by Moscow’s offensive against Ukraine.
US sanctions fundraisers for extremist West Bank settlers who commit violence against Palestinians
- Move comes as West Bank sees some of its worst violence perpetrated by settlers against Palestinians since Gaza war
WASHINGTON: The Biden administration on Friday imposed sanctions on two entities accused of fundraising for extremist Israel settlers already sanctioned, as well as the founder of an organization whose members regularly assault Palestinians.
The Treasury Department announcement comes as the West Bank has seen some of its worst violence perpetrated by extremist settlers against Palestinians since the war in nearby Gaza began.
There is also friction between President Joe Biden and Israeli Prime Minister Benjamin Netanyahu, whose far-right government has reacted angrily to previous sanctions imposed against West Bank settlers.
Included in the Friday sanctions are two entities — Mount Hebron Fund and Shlom Asiraich — accused of raising funds for sanctioned settlers Yinon Levi and David Chai Chasdai.
Both men were previously sanctioned by the Biden administration for violently attacking Palestinians in the West Bank.
The penalties aim to block them from using the US financial system and bar American citizens from dealing with them.
The fundraising campaign established by Mount Hebron Fund for Levi and by Shlom Asiraich for Chasdai generated the equivalent of $140,000 and $31,000, respectively, according to US Treasury.
In Levi’s case, the fund now sanctioned by the Biden administration is linked to the regional council in the area, a body that receives state money. The Biden order Friday stopped short of sanctioning the council itself.
Rights groups say that the expansion of illegal settler outposts in the West Bank is enthusiastically supported by the regional councils and nudged along by Israel’s current national government — the most far-right in the country’s history.
The Biden order also skirted sanctioning crowdfunding websites where funds were raised, GiveChak and New York-based Charidy.
In Chasdai’s case, the fundraiser on Charidy was organized by Shlom Asiraich, which raises money for imprisoned Jewish extremists.
Both online fundraisers have now been taken down. But at least one fundraiser linked to a settler previously sanctioned by the Biden administration, Moshe Sharvit, remains online. As of Friday, the page on GiveChak had raised the equivalent of over $879,000.
Additionally, the State Department is designating Ben-Zion Gopstein, the founder and leader of Lehava, an organization whose members have assaulted Palestinian civilians.
Treasury Deputy Secretary Wally Adeyemo said the organizations “undermine the peace, security, and stability of the West Bank. We will continue to use our tools to hold those responsible accountable.”
In February, Biden issued an executive order that targets Israeli settlers in the West Bank who have been accused of attacking Palestinians and Israeli peace activists in the occupied territory.
Hindu-Muslim divisions sway voting in Indian district scarred by deadly riots
- Villages are largely self-segregated by religion in and around Muzaffarnagar in the most populous Uttar Pradesh state
- Violent clashes broke out in 2013 after two Hindus stabbed Muslim youth to death, accusing him of harassing their sister
MUZAFFARNAGAR: Hindu-Muslim enmity made way for peace in an Indian district that saw deadly riots a decade ago but religious divisions still influence residents who voted on Friday in general elections in which Hindu nationalism is a key theme.
Villages are largely self-segregated by religion in and around Muzaffarnagar district, in the most populous northern state of Uttar Pradesh, but people say there is no longer tension between the majority Hindu and minority Muslim communities.
Violent clashes broke out here in 2013 after two Hindus stabbed a Muslim youth to death, accusing him of sexually harassing their sister. They were later beaten to death by a Muslim mob, which sparked riots that killed about 65 people, mostly Muslims, and displaced thousands.
Violence has not returned to the district known as the country's sugarcane-belt, but political divisions remain as Hindus typically vote for Prime Minister Narendra Modi's Bharatiya Janata Party (BJP) and Muslims for the opposition.
Modi's government has "controlled Muslims", said Ramesh Chand, a Hindu biscuit baker in Kairana city near Muzaffarnagar.
Critics accuse the nationalist BJP of targeting India's 200 million minority Muslims to please their hardline Hindu base - charges they deny.
Modi is widely expected to win a third term on the back of strong growth, welfare and his personal popularity despite some concern about unemployment, price rises and rural distress.
Chand said Modi had improved security in the region. "We can live in peace, whether or not we have jobs ... We can sleep with our doors open."
There were opposing views too.
In Jaula village, sugarcane farmer Mohammed Irfan, 50, said Modi's "high-handedness against Muslims" as well as unemployment and inflation were major reasons for him voting for the opposition Samajwadi Party.
Uttar Pradesh elects 80 lawmakers to the 543-member lower house of parliament, the most among all states, and a strong showing here is critical to the nationwide outcome.
Support for Modi was visible in Kutba Kutbi village, the epicentre of the 2013 riots.
Although there is "brotherhood" between the two communities now, nearly all Muslim families left the village after the riots, said Vinay Kumar Baliyan, 43, a farmer who said he supports Modi for promoting economic growth and raising India's stature globally.
But Irfan said Muslims are expected to vote in larger numbers this time as Eid celebrations this month brought many migrant workers and students home.
After Pakistan alert, WHO likely to issue wider warning on contaminated J&J cough syrup
- The UN health body said it puts out global medical product alerts to ‘encourage diligence’ by authorities
- The WHO this week sent out alert on five batches of contaminated cough syrup ingredients found in Pakistan
LONDON: The World Health Organization is likely to issue a wider warning about contaminated Johnson and Johnson-made children’s cough syrup found in Nigeria last week, it said in an email.
Nigeria’s regulator recalled a batch of Benylin paediatric syrup last Wednesday, having found a high level of diethylene glycol in the product during routine testing.
The contaminant, alongside another closely related toxin, ethylene glycol, has been linked to the deaths of more than 300 children in Cameroon, Gambia, Indonesia and Uzbekistan since 2022, though there is no evidence that these incidents are linked with the latest recalls.
The UN health body said it puts out global medical product alerts to “encourage diligence” by national authorities and was likely to do so in this instance, “subject to confirmation of certain details from parties.”
The recalled batch of Benylin syrup was made by J&J in South Africa in May 2021, although Kenvue now owns the brand after a spin-off from J&J last year.
J&J has referred requests for comment to Kenvue. In an emailed statement on Friday, Kenvue said it had carried out tests on the batch recalled by Nigeria and had not detected either diethylene or ethylene glycol.
“We continue to work closely with health authorities and the WHO and are engaging with NAFDAC to understand their test results, including verifying the authenticity of the sampled product, the testing methodology used, and results reported by the agency,” the statement added.
Since Nigeria’s recall, five other African countries have also pulled the product from shelves — Kenya, Rwanda, Tanzania, Zimbabwe and South Africa, where the drug was made.
South Africa’s regulator has also recalled another batch of the syrup, which is used to treat coughs, hay fever and other allergic reactions in children.
Diethylene glycol is toxic to humans when consumed and can result in acute kidney failure, although there have been no reports of harm in the latest incident.
RAW MATERIALS
In the 2022 cases, the contamination in the syrups came from the raw materials used by manufacturers in India and Indonesia.
The WHO said it was collaborating with both the manufacturer and regulatory authority in South Africa to investigate the Benylin paediatric syrup, and had information on the source of the ingredients used. Kenvue has previously said it tested its ingredients before manufacture.
The agency said the possibility that the syrup was counterfeit was also “under consideration as part of investigations.”
Earlier this week the WHO sent out a separate alert on five batches of contaminated cough syrup ingredients found in Pakistan that appeared to have been falsely labelled as Dow Chemical products.
It was the first alert the WHO has sent on excipients — elements of a medicine other than the active pharmaceutical ingredient — rather than finished products, the agency confirmed on Friday.
The batches of propylene glycol were contaminated with ethylene glycol.
“It was critical for WHO to also alert manufacturers that may have been procuring this material to exercise more caution,” a WHO spokesperson said by email.
Propylene glycol is not an ingredient in Benylin paediatric syrup, a Kenvue spokesperson said on Friday.
