French Security Chief Warns of Permanent Cyber War

France's cyber security chief has warned of the risk of "permanent war" in cyberspace as a result of hacking for espionage and fraud purposes by states and criminals.

Guillaume Poupard said of cyber attacks that "in terms of effects and impact, we are clearly getting closer to a state of war". The director general of the government cyber defence agency known in France by its acronym, ANSSI, lamented a lack of commonly agreed rules to govern cyberspace and said nations "must work collectively, not just with two or three Western countries, but on a global scale".

Mr Poupard also said there is no evidence that a notorious Russian hacking group was behind the cyber-attack on President Emmanuel Macron's election campaign. 

The Macron campaign hack "was so generic and simple that it could have been practically anyone", he said. 
He said they found no trace that the Russian hacking group known as APT28, blamed for other attacks including the one which hit the US presidential campaign, was responsible.

Its experts were immediately dispatched when documents stolen from the Macron campaign leaked online on May 5 in the closing hours of the presidential race.

Mr Poupard said the attack's simplicity "means that we can imagine that it was a person who did this alone. They could be in any country". Mr Poupard added: "With what we see today, attacks that are criminal, from states, often for espionage or fraud but also more and more for sabotage or destruction, we are getting closer, clearly, to a state of war, a state of war that could be more complicated, probably, than those we've known until now." 

His comments echoed testimony from the head of the US National Security Agency, Admiral Michael Rogers, to the US Senate armed services committee on May 9.

Admiral Rogers spoke of "cyber effects" being used by states "to maintain the initiative just short of war",
He said: "Cyber war is not some future concept or cinematic spectacle - it is real, and here to stay."

Mr Poupard said "the most nightmare scenario, the point of view that Rogers expressed and which I share" would be "a sort of permanent war, between states, between states and other organisations, which can be criminal and terrorist organisations, where everyone will attack each other, without really knowing who did what; a sort of generalised chaos that could affect all of cyberspace". 

Contrary to Admiral Rogers, who said the US had warned France of "Russian activity" before Mr Macron's win, Mr Poupard did not point the finger at Russia. 

APT28 has been identified by the US government as a Russian intelligence outfit and blamed for hacks of the US election campaign, as well as anti-doping agencies and other targets. The group also is known by other names, including Fancy Bear.

Ein News:

You Might Also Read:

Hackers Came, But the French Were Prepared:

France Launches a Cyber Warfare Division:

Meet The Fancy Bears:

 

« UK’s Trident Nuclear Subs Vulnerability To Hackers
Putin Applauds Patriotic Russian Hackers »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Lastline

Lastline

Lastline is the leader in advanced malware protection.

SQA Service

SQA Service

SQA Service provide independent software and process Quality Assurance services.

a1qa

a1qa

a1qa specializes in the delivery of full-cycle software QA and application testing services.

Anomali

Anomali

Anomali delivers intelligence-driven cybersecurity solutions to enhance threat visibility, automate threat processing and detection, and accelerate threat investigation, response, and remediation.

LEXFO

LEXFO

LEXFO specializes in the security of information systems, assisting clients in protecting information assets using an offensive and innovative approach.

NextVision

NextVision

NextVision is a Cybersecurity and Technology company offering a range of solutions and services for Security, Compliance and IT Infrastructure Management.

Hexnode MDM

Hexnode MDM

Hexnode MDM is an award winning Enterprise Mobility Management vendor which helps businesses to secure and manage BYOD, COPE, apps and content.

M2SYS

M2SYS

M2SYS is a worldwide leader in identification and authentication solutions.

Sixgill

Sixgill

Sixgill, an IoT sensor platform company, builds the universal data service and smart process automation software allowing any organization to effectively govern its IoE assets.

DDOS-Guard

DDOS-Guard

DDoS-GUARD is one of the leading service providers on the global DDoS protection and content delivery markets.

VariQ

VariQ

VariQ is a premier provider of Cybersecurity, Software Development and Cloud services to federal, state, and local government.

Debevoise & Plimpton

Debevoise & Plimpton

Debevoise & Plimpton LLP is a premier law firm with market-leading practices in areas including Data Strategy & Security.

Cyber Ranges

Cyber Ranges

Cyber Ranges is the next-generation cyber range for the development of cyber capabilities and the validation of cyber security skills and organizational cyber resilience.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.

Cydea

Cydea

Cydea are an optimistic cyber security consultancy of experts in security, data, technology and design that want to build a safer, more secure world where more things go right.

Mindgard

Mindgard

The Mindgard Security Copilot platform secures your Artificial Intelligence, GenAI and LLMs.