Ransomware victim disclosure
← All victimsUNDP
Claimed by 8Base · listed 2 years ago
Status timeline
- ListedMar 27, 2024
- Data leakeddate unknown
At a glance
- Group
- 8Base
- Status
- Data leaked
- Country
- United States
- Sector
- Government
- Listed on leak site
- Mar 27, 2024
About the victim
AI dossier — public-source company profileThe United Nations Development Programme (UNDP) is a UN agency established in 1966 that supports sustainable development, democratic governance, and disaster resilience across 170+ countries. It operates as a global development network with headquarters in New York and regional offices worldwide.
- Industry
- International Development & Humanitarian Aid
- Address
- 1 UN Plaza, New York, NY 10017, United States
- Employees
- 7000-8000
- Founded
- 1966
Attack summary
Severity: critical — UNDP is a UN agency handling sensitive international development, governance, and humanitarian data across 170+ countries. Breach of such an organization poses risks to development programs, government partners, and vulnerable populations in multiple nations. The confirmed publication of data elevates this to critical regardless of specific data inventory visibility.8Base claims to have breached UNDP systems. The group has published data from the attack but no specific details on the scope of exfiltration or encryption are stated in the leak post excerpt provided.
Data the group says was taken
AI dossier — extracted from the leak post- internal documents
- potentially classified development data
- operational files
What the group claims
Founded in 1966, the UNDP is an organization that assists with sustainable development, democratic governance, and disaster resilience.undp.org
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

