French Security Chief Warns of Permanent Cyber War

France's cyber security chief has warned of the risk of "permanent war" in cyberspace as a result of hacking for espionage and fraud purposes by states and criminals.

Guillaume Poupard said of cyber attacks that "in terms of effects and impact, we are clearly getting closer to a state of war". The director general of the government cyber defence agency known in France by its acronym, ANSSI, lamented a lack of commonly agreed rules to govern cyberspace and said nations "must work collectively, not just with two or three Western countries, but on a global scale".

Mr Poupard also said there is no evidence that a notorious Russian hacking group was behind the cyber-attack on President Emmanuel Macron's election campaign. 

The Macron campaign hack "was so generic and simple that it could have been practically anyone", he said. 
He said they found no trace that the Russian hacking group known as APT28, blamed for other attacks including the one which hit the US presidential campaign, was responsible.

Its experts were immediately dispatched when documents stolen from the Macron campaign leaked online on May 5 in the closing hours of the presidential race.

Mr Poupard said the attack's simplicity "means that we can imagine that it was a person who did this alone. They could be in any country". Mr Poupard added: "With what we see today, attacks that are criminal, from states, often for espionage or fraud but also more and more for sabotage or destruction, we are getting closer, clearly, to a state of war, a state of war that could be more complicated, probably, than those we've known until now." 

His comments echoed testimony from the head of the US National Security Agency, Admiral Michael Rogers, to the US Senate armed services committee on May 9.

Admiral Rogers spoke of "cyber effects" being used by states "to maintain the initiative just short of war",
He said: "Cyber war is not some future concept or cinematic spectacle - it is real, and here to stay."

Mr Poupard said "the most nightmare scenario, the point of view that Rogers expressed and which I share" would be "a sort of permanent war, between states, between states and other organisations, which can be criminal and terrorist organisations, where everyone will attack each other, without really knowing who did what; a sort of generalised chaos that could affect all of cyberspace". 

Contrary to Admiral Rogers, who said the US had warned France of "Russian activity" before Mr Macron's win, Mr Poupard did not point the finger at Russia. 

APT28 has been identified by the US government as a Russian intelligence outfit and blamed for hacks of the US election campaign, as well as anti-doping agencies and other targets. The group also is known by other names, including Fancy Bear.

Ein News:

You Might Also Read:

Hackers Came, But the French Were Prepared:

France Launches a Cyber Warfare Division:

Meet The Fancy Bears:

 

« UK’s Trident Nuclear Subs Vulnerability To Hackers
Putin Applauds Patriotic Russian Hackers »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Howden Broking Group

Howden Broking Group

Howden provides a range of specialist insurance solutions to clients around the world including Cyber Liability insurance.

Perspective Risk

Perspective Risk

Perspective Risk provides penetration testing, security assessments, risk management & compliance solutions, InfoSec training and consultancy services.

Cryptomathic

Cryptomathic

Cryptomathic is an expert on commercial crypto - we develop, deliver and support the most secure and efficient off-the-shelf and customised solutions.

CERT Syria

CERT Syria

CERT Syria is the national Computer Emergency Response Team for Syria.

The Data Privacy Group

The Data Privacy Group

The Data Privacy Group provide expert professional services underpinned by world leading automation tools and a consulting team specialized in privacy and data protection.

TokenOne

TokenOne

TokenOne is a Cyber Security software company that makes it easy to replace passwords, tokens and other forms of authentication with a more secure solution.

AllegisCyber Capital

AllegisCyber Capital

AllegisCyber is an investment company with a focus on seed and early stage investing in cybersecurity and its applications in emerging technology markets.

ThirdWatch

ThirdWatch

ThirdWatch is a Data Science company with real-time automated fraud prevention solutions.

The Security Company (TSC)

The Security Company (TSC)

The Security Company is a leading provider of creative employee security awareness programmes.

Q-Net Security

Q-Net Security

Protect your critical networks. Q-Net Security make hardware that provides the strongest drop-in security for your existing critical infrastructure.

Bitcrack

Bitcrack

Bitcrack Cyber Security helps your company understand and defend your threat landscape using our key experience and skills in cybersecurity, threat mitigation and risk.

Soffid

Soffid

Soffid provides full Single-Sign-On experience and full Identity and Access Management features by policy-based centralised orchestration of user identities.

Cyber Range Solutions (CRS)

Cyber Range Solutions (CRS)

CRS provides cyber security training and improve security team performance by providing a hyper realistic, virtual training environment.

Parablu

Parablu

Parablu is a leading provider of data security and resiliency solutions for the digital enterprise.

Eden Data

Eden Data

Eden Data is on a mission to break the outdated mold of traditional cybersecurity consulting. We handle all of your security, compliance & data privacy needs.

Lansafe

Lansafe

Lansafe stands as a leading managed service provider in the UK, seamlessly integrating IT, Telecoms, Security, Electrical and Cyber Security solutions.