French Security Chief Warns of Permanent Cyber War

France's cyber security chief has warned of the risk of "permanent war" in cyberspace as a result of hacking for espionage and fraud purposes by states and criminals.

Guillaume Poupard said of cyber attacks that "in terms of effects and impact, we are clearly getting closer to a state of war". The director general of the government cyber defence agency known in France by its acronym, ANSSI, lamented a lack of commonly agreed rules to govern cyberspace and said nations "must work collectively, not just with two or three Western countries, but on a global scale".

Mr Poupard also said there is no evidence that a notorious Russian hacking group was behind the cyber-attack on President Emmanuel Macron's election campaign. 

The Macron campaign hack "was so generic and simple that it could have been practically anyone", he said. 
He said they found no trace that the Russian hacking group known as APT28, blamed for other attacks including the one which hit the US presidential campaign, was responsible.

Its experts were immediately dispatched when documents stolen from the Macron campaign leaked online on May 5 in the closing hours of the presidential race.

Mr Poupard said the attack's simplicity "means that we can imagine that it was a person who did this alone. They could be in any country". Mr Poupard added: "With what we see today, attacks that are criminal, from states, often for espionage or fraud but also more and more for sabotage or destruction, we are getting closer, clearly, to a state of war, a state of war that could be more complicated, probably, than those we've known until now." 

His comments echoed testimony from the head of the US National Security Agency, Admiral Michael Rogers, to the US Senate armed services committee on May 9.

Admiral Rogers spoke of "cyber effects" being used by states "to maintain the initiative just short of war",
He said: "Cyber war is not some future concept or cinematic spectacle - it is real, and here to stay."

Mr Poupard said "the most nightmare scenario, the point of view that Rogers expressed and which I share" would be "a sort of permanent war, between states, between states and other organisations, which can be criminal and terrorist organisations, where everyone will attack each other, without really knowing who did what; a sort of generalised chaos that could affect all of cyberspace". 

Contrary to Admiral Rogers, who said the US had warned France of "Russian activity" before Mr Macron's win, Mr Poupard did not point the finger at Russia. 

APT28 has been identified by the US government as a Russian intelligence outfit and blamed for hacks of the US election campaign, as well as anti-doping agencies and other targets. The group also is known by other names, including Fancy Bear.

Ein News:

You Might Also Read:

Hackers Came, But the French Were Prepared:

France Launches a Cyber Warfare Division:

Meet The Fancy Bears:

 

« UK’s Trident Nuclear Subs Vulnerability To Hackers
Putin Applauds Patriotic Russian Hackers »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Galaxkey

Galaxkey

Galaxkey is a data protection product that protects email, documents and any data using access control and an encryption platform.

CSR Privacy Solutions

CSR Privacy Solutions

CSR Privacy Solutions is a leading provider of privacy regulatory compliance programs for small and medium sized businesses.

Redscan Cyber Security

Redscan Cyber Security

Redscan Cyber Security is a Managed Security Services Provider (MSSP) that enables businesses to effectively manage their information security risks.

Global Learning Systems (GLS)

Global Learning Systems (GLS)

Global Learning Systems provides security awareness and compliance training programs for employees that effectively promote behavior change and protect your organization.

Cyber Execs

Cyber Execs

Cyber Execs is a Cyber Security Consultancy & Executive Recruitment firm.

Trustlook

Trustlook

Trustlook's SECUREai engine delivers the performance and scalability needed to provide total threat protection against malware and other forms of attack.

TI Safe

TI Safe

TI Safe provide cybersecurity solutions for industrial networks of main critical infrastructures in Latin America.

European Society of Criminology (ESC)

European Society of Criminology (ESC)

The ESC Working Group on Cybercrime is focused on cybercrime, its causes and offenders, impact on victims, and our response to it at the individual, corporate, and governmental levels.

GV (Google Ventures)

GV (Google Ventures)

GV provides venture capital funding to bold new companies in the fields of life science, healthcare, artificial intelligence, robotics, transportation, cyber security and agriculture.

Syber Technology

Syber Technology

Syber Technology is an IT project implementer empowering IT systems of Small to Medium Enterprises in the Middle East.

NeuVector

NeuVector

NeuVector, the leader in Full Lifecycle Container Security, delivers uncompromising end-to-end security from DevOps vulnerability protection to complete protection in production.

CyberEdBoard

CyberEdBoard

CyberEdBoard is a private, peer-to-peer education and networking community focused on cybersecurity, technology, business processes and risk management.

Descope

Descope

Descope is a service that helps every developer build secure, frictionless authentication and user journeys for any application.

Quotient

Quotient

Quotient builds digital experiences that empower and inspire the American people by understanding their needs, simplifying complex technical solutions and adapting to how they work, live and learn.

Relyance AI

Relyance AI

Relyance AI - One unified platform for privacy, security, & governance.

Softsource vBridge

Softsource vBridge

Softsource vBridge are an ICT systems integrator providing specialist technology solutions, professional services, technical expertise and data centre services.