Cyber Attack Hits German Air Traffic Control

The German air traffic control agency, Deutsche Flugsicherung (DFS), has confirmed that it was hit by a cyber attack disrupting its office communications. The recent attack affected the company’s IT infrastructure but has not impact air traffic control operations and flights were unaffected.

This cyber attack was probably done by APT28, also known as Fancy Bear, a notorious hacker group closely linked to the Russian military intelligence service GRU.

APT28 has been cyber hacking government agencies, political organisations, and media outlets across Europe and North America since 2004. The group has a history of attacks on critical infrastructure. But in Germany, APT28 is known for a cyber attack against the Bundestag in 2015.

A DFS spokesperson confirmed that the attack happened and has said that they are implementing defensive measures. The nature of the attack remains unclear, and it is not yet known whether any sensitive data was compromised.

The Federal Office for the Protection of the Constitution (BfV) has been notified, and the incident is under investigation.

The BfV, which has monitored APT28’s activities for years, emphasises the group’s ties to the GRU, suggesting that the attack may have geopolitical motivations beyond mere criminal intent. Authorities have not said anything about the ongoing investigation, with the Federal Ministry of Transport overseeing DFS, referring inquiries back to the agency itself.

The involvement of APT28, if confirmed, would underscore the geo-political dimensions of the attack

APT28 has been implicated in a lot of cyber attacks with politically motivated goals, and its links to the Russian GRU suggest that such incidents may be part of broader efforts to influence international affairs and promote political instability.

The Record     |     TEISS     |     BR24     |     Commercial Risk     |     Pravda     |     Euro Integration

Image: Pixabay

You Might Also Read: 

Russia’s Cyber Strategy:


If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Iranian Campaign Targets WhatsApp Users
How AI Will Help Disrupt Elections Around The Globe »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CCN-CERT

CCN-CERT

CCN-CERT is the Spanish national government computer security incident response centre.

ITC Secure Networking

ITC Secure Networking

ITC are a leading cloud-based MSSP delivering service innovation in cyber security analytics & cloud technology.

CyberGuarded

CyberGuarded

CyberGuarded are an accredited vendor independent information security testing and auditing company.

GreyCortex

GreyCortex

GreyCortex uses advanced artificial intelligence, machine learning, and data mining methods to help organizations make their IT operations secure and reliable.

Buglab

Buglab

The Buglab contest and Vigilante Protocol help companies all over the world to discover and fix vulnerabilities on their digital solutions or assets.

Vdoo

Vdoo

Vdoo provides an end-to-end product security platform for automating all software security tasks throughout the entire product lifecycle.

Ukrainian Academy of Cyber Security (UACS)

Ukrainian Academy of Cyber Security (UACS)

UACS is a professional non-profit public organization established to promote the development of an extensive network and ecosystem of education and training in the field of cyber security.

AdEPT Technology Group

AdEPT Technology Group

AdEPT are a managed services and telecommunications provider offering award-winning, proven and uncomplicated technical solutions for over 12,000 organisations across the UK.

DoQubiz Technology

DoQubiz Technology

DoQubiz is using the idea of security through obscurity to develop their proprietary Fractal Security Engine that implements a highly resilient data protection protocol.

BlueAlly

BlueAlly

BlueAlly helps clients scale, optimize, and manage their IT resources to reach their business goals.

FCI

FCI

FCI is a NIST-Based Managed Security Service Provider (MSSP) offering Cybersecurity Compliance Enablement Technologies & Services to Financial Services organizations.

The Security Bulldog

The Security Bulldog

The Security Bulldog distills and assimilates open source cyber intelligence to enable security teams to understand threats more quickly, make better decisions, and accelerate detection and response.

Onwardly

Onwardly

For everyday folks tasked with implementing security and privacy. Do it faster with Onwardly - build, launch and scale your cyber resilience program in 30 minutes per week.

ARGOS Cloud Security

ARGOS Cloud Security

ARGOS aims to simplify and strengthen cloud security, by creating a visual map of security vulnerabilities, to your priceless information stored in any cloud provider environment.

AI Security Institute (AISI)

AI Security Institute (AISI)

The AI Security Institute’s mission is to minimise surprise to the UK and humanity from rapid and unexpected advances in AI.

Codezero Technologies

Codezero Technologies

Codezero is at the forefront of microservices development, employing an identity-aware overlay network that delivers zero-trust security to DevOps.