Germany's Intelligence Chief Accuses Russia of Cyber Warfare

Germany's domestic intelligence agency has accused Russia of engaging in ongoing cyberwarfare. The aim, he said, is to steal information and to carry out sabotage against its enemies - both real and imagined.

Recently Hans-Georg Maassen, the head of Germany's domestic intelligence agency (BfV), said that in the past year or so, Russia had launched attacks against the German parliament, NATO members and French TV.

"Cyberspace is a place for hybrid warfare," Maassen said. "It opens a new space of operations for espionage and sabotage.

"The campaigns being monitored by the BfV are generally about obtaining information, that is spying," he said. "However, Russian secret services have also shown a readiness to carry out sabotage."

Germany's lower house of parliament was attacked last year by a phishing tool named Sofacy, which is used by a Russian-based group called Pawn Storm. The hackers apparently wanted to steal personal and corporate data from the Christian Democratic Union (CDU), and high-profile individuals, according to Trend Micro, a security research firm. The CDU is Germany's leading political party, which is headed by Chancellor Angela Merkel. The attack also reportedly affected a computer in Merkel's legislative office. The attack appears to have been an attempt to get Germany to abandon its support for Ukraine.

Going After Russia's Enemies

Pawn Storm is believed to either have ties to the Russian government or be a part of it. These "cyberattacks carried out by Russian secret services are part of multi-year international operations that are aimed at obtaining strategic information," Maassen said. "Some of these operations can be traced back as far as seven to 11 years."

In the realm of sabotage, Sofacy is also believed to have brought down part of Ukraine's power grid last year. Pawn Storm is dedicated to going after the Kremlin's real or imagined enemies, including the US government and its military, as well as NATO and governments in eastern Europe and Turkey, according to multiple cybersecurity experts.

"Pawn Storm clearly targets groups that could be perceived as a risk to Russian politics and interests," according to Trend Micro. The cyber-warriors also hit France's TV5 Monde television channel in April 2015, forcing it off the air and placing jihadist propaganda messages on the station's website and social media accounts.

So far the CDU computers have not been breached, according to one official in Berlin, who spoke on condition of anonymity. But, he said, they aren't taking any chances. "We have nonetheless made appropriate changes to our IT infrastructure," he said. "We can't say anything on the reasons for this."

Ein News

« Hacking Pros Don’t Trust The Internet
Is The Boom In Ransomware Stabilizing? »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Oxygen Forensics

Oxygen Forensics

Oxygen Forensics offer the most advanced forensic data examination tools for mobile devices and cloud services.

Auth0

Auth0

Auth0 is a cloud service that provides a set of unified APIs and tools that instantly enables single sign-on and user management for any application, API or IoT device.

Cyanre

Cyanre

Cyanre delivers state of the art cyber forensic services through software technologies and procedures that exceed conformities of major law enforcement agencies across the globe.

Komodo Consulting (KomodoSec)

Komodo Consulting (KomodoSec)

Komodo Consulting specializes in Penetration Testing and Red-Team Excercises, Cyber Threat Intelligence, Incident Response and Application Security.

CyberTech Network

CyberTech Network

CyberTECH is a global cybersecurity, Internet of Things (IoT) and Smart City network ecosystem and incubator operator.

SecuLution

SecuLution

SecuLution is an Antivirus product using Application Whitelisting which offers much more protection than Virus Scanners ever can.

Vintegris

Vintegris

Vintegris are a Certification Authority and manufacturer of innovative systems and applications for the full cycle of digital identity.

TechArch

TechArch

TechArch helps customers to optimize their investments in cybersecurity by providing them independent and vendor-neutral consultation and guidance.

Veracity Industrial Networks

Veracity Industrial Networks

Veracity provides an innovative industrial network platform that improves the reliability, efficiency, and security of industrial networks and devices.

Securd

Securd

Securd takes opportunities away from your cyber adversaries. Cloud-delivered zero-trust DNS firewall and web filtering protection keep your business network and remote employees safe.

Gatefy

Gatefy

Getfy is a cybersecurity company specialized in artificial intelligence and machine learning. We work to solve challenging issues, especially those involving email security.

Bastion Networks

Bastion Networks

Bastion are a security-focussed managed solution provider and consultancy. We work with advanced cyber security vendors to produce managed security solutions to protect from online threats.

Unit 42

Unit 42

Unit 42 brings together world-renowned threat researchers, incident responders and security consultants to create an intelligence-driven, response-ready organization.

Afripol

Afripol

AFRIPOL was set up to strengthen cooperation between the police agencies of AU member states in the prevention and fight against organized transnational crime, terrorism, and cybercrime.

Scalarr

Scalarr

Scalarr is an innovative, next-generation cyber security firm focused on automation and AI to detect and prevent threats in mobile and Edge/IoT infrastructures.

Revytech

Revytech

Revytech is a tech company providing services in a broad range of areas including IT operations, cyber security and network engineering.