Germany's Intelligence Chief Accuses Russia of Cyber Warfare

Uploaded on 2016-07-07 in INTELLIGENCE--Europe, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE-Hot Spots-Russia, TECHNOLOGY--Hackers

Germany's domestic intelligence agency has accused Russia of engaging in ongoing cyberwarfare. The aim, he said, is to steal information and to carry out sabotage against its enemies - both real and imagined.

Recently Hans-Georg Maassen, the head of Germany's domestic intelligence agency (BfV), said that in the past year or so, Russia had launched attacks against the German parliament, NATO members and French TV.

"Cyberspace is a place for hybrid warfare," Maassen said. "It opens a new space of operations for espionage and sabotage.

"The campaigns being monitored by the BfV are generally about obtaining information, that is spying," he said. "However, Russian secret services have also shown a readiness to carry out sabotage."

Germany's lower house of parliament was attacked last year by a phishing tool named Sofacy, which is used by a Russian-based group called Pawn Storm. The hackers apparently wanted to steal personal and corporate data from the Christian Democratic Union (CDU), and high-profile individuals, according to Trend Micro, a security research firm. The CDU is Germany's leading political party, which is headed by Chancellor Angela Merkel. The attack also reportedly affected a computer in Merkel's legislative office. The attack appears to have been an attempt to get Germany to abandon its support for Ukraine.

Going After Russia's Enemies

Pawn Storm is believed to either have ties to the Russian government or be a part of it. These "cyberattacks carried out by Russian secret services are part of multi-year international operations that are aimed at obtaining strategic information," Maassen said. "Some of these operations can be traced back as far as seven to 11 years."

In the realm of sabotage, Sofacy is also believed to have brought down part of Ukraine's power grid last year. Pawn Storm is dedicated to going after the Kremlin's real or imagined enemies, including the US government and its military, as well as NATO and governments in eastern Europe and Turkey, according to multiple cybersecurity experts.

"Pawn Storm clearly targets groups that could be perceived as a risk to Russian politics and interests," according to Trend Micro. The cyber-warriors also hit France's TV5 Monde television channel in April 2015, forcing it off the air and placing jihadist propaganda messages on the station's website and social media accounts.

So far the CDU computers have not been breached, according to one official in Berlin, who spoke on condition of anonymity. But, he said, they aren't taking any chances. "We have nonetheless made appropriate changes to our IT infrastructure," he said. "We can't say anything on the reasons for this."

Ein News

« Hacking Pros Don’t Trust The Internet
Is The Boom In Ransomware Stabilizing? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

SecPoint

SecPoint

SecPoint provides products to secure & protect your network from remote and local attacks.

High-Tech Bridge

High-Tech Bridge

High-Tech Bridge SA is a Swiss MSSP provider offering security auditing, source code review and computer forensics.

CW Jobs

CW Jobs

CWJobs.co.uk is a leading specialist IT recruitment website covering all areas of IT including Cyber Security.

National Agency for the Security of Information Systems (ANSSI) - France

National Agency for the Security of Information Systems (ANSSI) - France

The role of Agence Nationale de la Sécurité des Systèmes d'Information (ANSSI) is to foster a coordinated, ambitious, pro-active response to cybersecurity issues in France.

Deltagon

Deltagon

Deltagon develops information security solutions to protect companies’ confidential information in e-communication and e-services.

Progress Flowmon

Progress Flowmon

Progress Flowmon (formerly Flowmon Networks) provide high performance network monitoring technology and behavior analytics to enhance network performance and deal with cyber threats.

WizNucleus

WizNucleus

WizNucleus develops, markets and supports a software platform (Cyberwiz-Pro) that enables Critical Infrastructure enterprises to ensure the future state of their cybersecurity and remain compliant.

Comarch

Comarch

Comarch is a provider of IT business solutions to optimize operational and business processes. Cyber security solutions are focused on Identity Management and Security Assessment services.

Information Technology Industry Development Agency (ITIDA)

Information Technology Industry Development Agency (ITIDA)

ITIDA has two broad goals: building the capacities of Egypt’s local information and communications technology (ICT) industry and attracting foreign direct investments to boost the ICT sector.

Echosec Systems

Echosec Systems

Echosec Systems is a data discovery company delivering social media and dark web threat intelligence. Our web based security software delivers critical information for situational awareness.

OffSec

OffSec

OffSec have defined the standard of excellence in penetration testing training. Elite security instructors teach our intense training scenarios and exceptional course material.

FPT Software

FPT Software

As a leading technology service provider, FPT assists customers of all sizes and from any industries in implementing and adapting digital technologies including cybersecurity.

Infuse Technology

Infuse Technology

Infuse Technology provide the highest level of cybersecurity support, implementing practical solutions to protect against cyber-attacks, from simple phishing scams to complex data security breaches.

Ridge Security

Ridge Security

Ridge Security enables enterprise and web application teams, ISVs, governments, education, DevOps, anyone responsible for ensuring software security to affordably and efficiently test their systems.

Qevlar AI

Qevlar AI

Qevlar AI empowers SOC teams, to eliminate redundant tasks and refocus on what truly matters - making the most of every employee within the SecOps team.

Foghorn Consulting

Foghorn Consulting

Foghorn can analyze your cloud to enhance performance and security, while reducing costs. Based on AWS’ 6 Pillars, our AWS WAFR Certified Engineers Will Identify Areas of Improvement.