Why Would Someone Hack the IMF?

To see how the sausage is made.

BY JOSHUA E. KEATING | JUNE 14, 2011

In addition to finding a new managing director and awaiting the prosecution of its most recent one, the IMF now has a serious cybersecurity breach to deal with. The New York Times reported over the weekend that the organization had been hit by "a large and sophisticated cyberattack whose dimensions are still unknown." The fund declined to provide details to the Times about the nature of the breach, but it was apparently serious enough that the World Bank immediately severed its computer links to the IMF. But besides Dominique Strauss-Kahn's emails, what's worth stealing from the IMF?

Not as much as there used to be, but still potentially a lot. The IMF now makes a lot of information public that used to be kept secret, such as the terms of loan arrangements with recipient countries. But as with the State Department cables released by WikiLeaks last year, the juicy material may not be so much what policies the IMF is following toward given countries as how it's talking about them in private.

The minutes of IMF executive board meetings are not made public until several years after they take place. Meetings of the board presumably include candid discussions about the financial solvency of countries requesting bailouts. In both meeting minutes and informal remarks over email, officials often discuss countries' internal politics and economic policies in terms they would never use in public documents. It's not exactly unheard of for countries to misrepresent their economic data. If IMF officials were shown to be privately questioning member countries' official figures, it would certainly have the power to move markets.

Like any multilateral organization, IMF members also seek to push their own interests, and it's certainly possible that major shareholders like the United States and Britain may advocate for more favorable loan terms for allies. Again, this isn't exactly secret, but it isn't the sort of thing governments want to see dissected in the media.

Of course, not all cyberattacks are aimed at stealing information or orchestrating WikiLeaks-style data dumps. Sometimes, they're just done to prove a point -- as in the recent attacks by the mysterious group LulzSec on Sony, Fox News, PBS, and others. In fact, just two weeks ago, the IMF received a threat from the "hacktivist" collective Anonymous in retaliation for the fund's activities in Greece. "The overreaching powers of the European Union (EU) and the IMF will not go unnoticed or unopposed by the global community who stand in solidarity with their brothers and sisters of Greece," read a statement attributed to the group.

Despite the threat, there's no indication that the recent attack was carried out by Anonymous. One hacker advising the U.S. Department of Homeland Security told Reuters that the intruder was likely working on behalf of a nation-state looking to steal sensitive information for economic advantage or to simply embarrass the organization.

With an organization as controversial as the IMF, the list of suspects is long. On the other hand, it's not as if a country could exactly issue a news release containing secret IMF data (though it could potentially invest in a country about to receive a loan). This may turn out to be a case in which using the information may prove just as difficult as stealing it.

Thanks to James Vreeland, associate professor of foreign service and government at Georgetown University.

GEORGES GOBET/AFP/Getty Images

 

Joshua E. Keating is an associate editor at Foreign Policy.

HILLANDMAIN

3:26 AM ET

June 15, 2011

maybe

they want to find about the gold stuff

 

CHANGS

10:52 PM ET

July 11, 2011

Some do it for profit, some do it for power, some do it just to

Some do it for profit, some do it for power, some do it just to prove they can do it and some do it out of pure meanness and the desire to cause destruction.

My site was hacked this year, with the content deleted and a very childish taunting message place on the index page for the world to see.

There was nothing of value in my site files nor any real significance in erasing them or leaving the message. My site is a personal site, and not really worth the time to attack. It doesn't attract that many visitors as I have never cared about promoting it.

Nor was it a real set back to me since I had back up files. It really did not harm me that much as I was planning on rebuilding the site and would have taken it down within a few weeks had it not been hacked.

So it made no sense to hack my site. But somebody did.

ChangS

 

LIAMREGLER

4:03 PM ET

July 12, 2011

vested interest?

My impression is that many of the recent, more sophisticated cyber attacks have been conducted at the behest of the Chinese government, and it is possible that this may have been one as well. It would stand to reason that China would have a vested interest in knowing the true state of the financial condition of many of the countries it has loaned money to in case all of the debt instruments that it currently holds soon come to be worth much less.