Report: World Bank servers breached repeatedly
Story wrong, riddled 'with falsehoods and errors,' bank says
Computerworld - A number of servers at the World Bank Group were repeatedly breached for more than a year by different intruders, but it is not clear how much data might have been compromised in the attacks, Fox News reported today.
The story, the details of which were contested by the World Bank after it ran, quotes unnamed sources as saying the banking group was victimized by at least six major intrusions from the summer of 2007 through September of this year.
At least two of the intrusions appear to have originated from the same batch of IP addresses within China, the report said. The first intrusions were discovered in September 2007, when the FBI informed the bank of the problem, which it discovered while it was conducting an unrelated investigation. The flaw apparently allowed the perpetrators to gain full and complete access to a secret data hub maintained by the organization in Johannesburg, South Africa, for a period of at least six months, the Fox News story said.
Another breach, involving the bank's treasury network in Washington, appears to have been perpetrated by a contractor or contractors working for Hyderabad, India-based Satyam Computer Services Ltd., the story said. The Satyam employee or contractor infected some workstations at the bank's headquarters in Washington with keystroke-logging software, which then sent any information it captured to a still unknown location.
Following the discovery of the breach, the World Bank immediately shut down its communication link with Satyam's offshore development center in Chennai, India. Satyam, one of India's largest IT services companies, has been handling several IT services functions for the World Bank since July 2003. The contract was due to be renewed this September but was allowed to lapse.
Jim Swords, a U.S.-based spokesman for Satyam, declined to comment on the status of the contract with the World Bank. He read a prepared statement to Computerworld in response to the initial report. The statement basically neither confirmed nor denied the details in the Fox report.
"Upon learning of this report today, senior executives initiated an internal investigation to determine the validity of these claims, however unlikely. We will share the findings of the investigation at the conclusion of these efforts," the statement said.
Another pair of intrusions, in June and July, originated from the same group of IP addresses in China that the first attack had come from. This time, however, whoever was behind the attack first compromised an external server run by one of the bank's units and used it to gain access to a server belonging to the Multilateral Investment Guarantee Agency (MIGA), the World Bank's insurance arm.



- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Streamline Compliance and Increase ROI
- Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will...
- Protecting Point of Sale Systems from Targeted Attack
- If you are responsible for protecting retail systems, download this case study to learn how this retailer eliminated the threat of malware on...
- From the Frontline - Preventing APT
- Is your company's network secure? Are your endpoints and servers secured? Before you answer, read this case study on a US Military Command...
- Stop Hackers Before They Attack
- Hacktivism, Identify Theft, Financial Gain, Cyber War - regardless of motivation, stopping today's hackers requires a new proactive approach to protecting endpoints. Learn...
- The four rules of complete web protection
- As an IT manager you've always known the web is a dangerous place. But with infections growing and the demands on your time... All Cybercrime and Hacking White Papers
- WikiLeaks: How am I Affected?
- The latest WikiLeaks episode has raised questions about how organizations and governments protect their sensitive information. While this incident was isolated, it has...
- Optimizing Networks for the Cloud
- Join guest speaker, Rohit Mehra, IDC Director of Enterprise Communications Infrastructure, to explore current trends, discuss best practices for optimizing Data Center and...
- Apps QuickStart Series Part 2: Designing and Deploying SQL Server on VMware vSphere
- Download this webcast to learn about the design considerations for virtualizing SQL workloads, performance and scalability information and high-availability options, as well as...
- Apps QuickStart Series Part 1: Designing and Deploying Exchange 2010 on VMware vSphere
- Download this webcast to learn the virtual hardware design considerations for Exchange 2010, deployment using the building block approach, options for high-availability and...
- Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware
- Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn... All Cybercrime and Hacking Webcasts