MONTREAL – The U.N. aviation agency, International Civil Aviation Organization (ICAO), reported a recent information security incident involving the alleged release of thousands of recruitment application data records. The incident, which took place between April 2016 and July 2024, was claimed by the threat actor known as Natohub.
The ICAO confirmed that the 42,000 records released do not affect any systems related to aviation safety or security. “We can confirm that this incident is limited to the recruitment database and does not affect any systems related to aviation safety or security operations,” the agency stated in response to a Reuters query.
The claim of an ICAO-related incident has been circulating following a post on a data breach-focused website popular with cybercriminals. Reuters could not immediately locate contact information for Natohub.
Earlier on Tuesday, a source told Reuters that the incident was linked to the release of job applicants’ records, with a sample made public. ICAO said on Monday it was investigating the hacker’s claim and had implemented additional security measures to protect its systems.
“We are also working to identify and notify affected individuals,” ICAO said.
The compromised data includes recruitment-related information entered by job applicants, such as names, email addresses, dates of birth, and employment history. “The affected data does not include financial information, passwords, passport details, or any documents uploaded by applicants,” ICAO clarified.
ICAO, which has 193 member states, was previously targeted in a hack in 2016 and has since made significant improvements to its security. The agency sets international standards on everything from runways to seat belts, and was created after the United States invited more than 50 allies in 1944 to agree on a common air navigation system.
The investigation is still ongoing, and ICAO is taking steps to enhance its security and notify those affected by the breach.