News
Exposed UN Database Left Sensitive Data Vulnerable Online
The unsecured files contained the data of organizations combating violence against women, posing a severe risk for vulnerable groups.
A United Nations Trust Fund database designed to combat violence against women was recently found openly accessible online, revealing over 115,000 files. The exposed documents included sensitive personal and organizational information from groups that partner with or receive support from UN Women and included staffing, contracts, letters, and even financial audits.
Security researcher Jeremiah Fowler discovered the unsecured database, which lacked password protection or other access controls, and promptly notified the UN, who swiftly secured the database. Fowler notes that these types of data exposures are common, but stresses the importance of maintaining awareness about such vulnerabilities:
“They’re doing incredible work, helping real people in challenging situations, but cybersecurity remains a critical issue,” Fowler explained. “I’ve found numerous examples of exposed data before, but in this case, it’s about organizations aiding people at risk simply for existing in certain regions”.
UN Women acknowledged the incident in a statement, expressing gratitude for the collaboration with cybersecurity experts and that it had launched an investigation.
The exposed data presents multiple security concerns. Financial audits in the database included bank account details, and the disclosures revealed how organizations receive and allocate their funding. Additionally, the information provided insights into staffing and internal operations, which could be exploited to trace connections between civil society organizations.
Also Read: The Top 10 Worst Cyberattacks In The Middle East Revealed
“You’ve got details on organizations, their staff, and projects with budgets in the millions,” Fowler explained. “If this information landed in the wrong hands, it could be used by scammers or even authoritarian regimes to identify which organizations are working where and who they’re collaborating with”.
Fowler expressed particular concern for the people mentioned in the database, many of whom had shared deeply personal experiences, including stories of abuse, kidnapping, and other traumatic events, likely under the assumption that their identities would remain protected.
If this incident spurs a broader review of the UN’s data security infrastructure, it could help prevent future breaches and mitigate risks for the vulnerable populations UN Women and other UN organizations serve.
News
Lebanon Ministers Meet Visa Over National Digital Payment Platform
Finance and technology ministers say a comparative study and roadmap will follow before any decision on adopting a model.
Lebanon’s finance and technology ministers met representatives from Visa last week to discuss a proposed unified national digital payment platform for government services, according to a readout from the Ministry of Finance.
The meeting brought together Finance Minister Yassin Jaber, Minister of State for Technology and Artificial Intelligence Kamal Shehadeh, a Visa delegation, and experts from both ministries. Discussion focused on whether Lebanon could establish a single platform through which citizens and institutions would pay taxes, fees, fines and other official transactions electronically, using mobile phones and other digital channels.
The Visa delegation presented examples from countries that have adopted unified government payment platforms, including the United Arab Emirates, Singapore, Estonia and Jordan. According to the readout, the examples were presented as having increased collection rates and expanded financial inclusion.
Talks covered settlement mechanisms, direct transfer to the treasury account, financial reconciliation, risk management, cybersecurity, fees, and an operational model that would involve the private sector. The parties agreed to continue technical and institutional consultations, prepare a comparative study, and develop an implementation roadmap before any decision on adopting a model for Lebanon.
Jaber said the Ministry of Finance had already enabled citizens to pay using credit cards and e-wallets through transfer companies, but described the proposed platform as a further step. He framed the development of electronic payment and collection systems as a priority within the ministry’s modernization plan.
Also Read: Deezer Says AI Tracks Now Make Up 44% Of Uploads
Shehadeh outlined the citizen-facing concept as a single mobile application through which users could settle obligations to ministries, government institutions and other bodies.
“The idea, in short, is that any citizen downloads an application on their mobile phone, through which they can pay all service obligations for all ministries, government institutions, or those owned by the Lebanese state, and others as well, as the platform is not limited only to state institutions,” he said.
Shehadeh added that the platform would not displace banks and money transfer companies that currently provide collection services to the state, calling it complementary to their work.
Lebanon Ministers Meet Visa Over National Digital Payment Platform
AltoVolo Releases Sigma Footage & Sets Date For Demonstrator
Careem Launches Lebanon Aid Drive With WFP
United Arab Emirates To Quit OPEC After 59 Years
YouTube Tests Conversational AI Search Tool
Yango Ride Introduces In-Chat Trip Planning In ChatGPT
Deezer Says AI Tracks Now Make Up 44% Of Uploads
NVIDIA Puts GPT-5.5 Codex In Hands Of 10,000 Staff
United Arab Emirates To Quit OPEC After 59 Years
