Connect with us

Hi, what are you looking for?


Email Security

IMF Emails Hacked

The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked.


The International Monetary Fund (IMF) recently detected a cybersecurity incident that involved nearly a dozen email accounts getting hacked. 

In a statement issued last week, the United Nations financial institution said it detected the security breach on February 16, 2024. 

An investigation conducted with external cybersecurity experts revealed that 11 IMF email accounts had been compromised. The hacked accounts were ‘re-secured’ and there is no indication at this point in the ongoing probe that the attacker gained access beyond these email accounts.

“The IMF takes prevention of, and defense against, cyber incidents very seriously and, like all organizations, operates under the assumption that cyber incidents will unfortunately occur,” the financial agency said. “The IMF has a robust cybersecurity program in place to respond quickly and effectively to such incidents.”

It’s unclear what the attackers’ goal was and what type of data they may have obtained from the IMF email accounts. 

Compromising the email accounts of a major financial organization such as the IMF could be useful to state-sponsored cyberspies, as well as profit-driven cybercriminals who could attempt to use the accounts for advanced social engineering.

The IMF told Reuters that the list of hacked accounts did not include the ones of Managing Director Kristalina Georgieva or other top officials. The agency said top leadership was “not targeted”. 

This appears to be the first cybersecurity incident disclosed by the IMF since 2011, when the agency was targeted in a cyberattack that reportedly resulted in the loss of a large quantity of data, including documents and emails.

Advertisement. Scroll to continue reading.

Related: Ransomware Group Takes Credit for LoanDepot, Prudential Financial Attacks

Related: Fidelity National Financial Takes Down Systems Following Cyberattack

Related: Willis Lease Finance Corp Discloses Cyberattack

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Former DoD CISO Jack Wilmer has been named CEO of defensive and offensive cyber solutions provider SIXGEN.

Certificate lifecycle management firm Sectigo has hired Jason Scott as its CISO.

The State of Vermont has appointed John Toney as the state’s new CISO.

More People On The Move

Expert Insights

Related Content

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to and Exchange Online.


Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Email Security

Many Fortune 500, FTSE 100 and ASX 100 companies have failed to properly implement the DMARC standard, exposing their customers and partners to phishing...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Enterprise users have been warned that cybercriminals may be trying to phish their credentials by luring them with fake emails that appear to be...

Cloud Security

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.

Cloud Security

Proofpoint removes a formidable competitor from the crowded email security market and adds technology to address risk from misdirected emails.