French Security Chief Warns of Permanent Cyber War

France's cyber security chief has warned of the risk of "permanent war" in cyberspace as a result of hacking for espionage and fraud purposes by states and criminals.

Guillaume Poupard said of cyber attacks that "in terms of effects and impact, we are clearly getting closer to a state of war". The director general of the government cyber defence agency known in France by its acronym, ANSSI, lamented a lack of commonly agreed rules to govern cyberspace and said nations "must work collectively, not just with two or three Western countries, but on a global scale".

Mr Poupard also said there is no evidence that a notorious Russian hacking group was behind the cyber-attack on President Emmanuel Macron's election campaign. 

The Macron campaign hack "was so generic and simple that it could have been practically anyone", he said. 
He said they found no trace that the Russian hacking group known as APT28, blamed for other attacks including the one which hit the US presidential campaign, was responsible.

Its experts were immediately dispatched when documents stolen from the Macron campaign leaked online on May 5 in the closing hours of the presidential race.

Mr Poupard said the attack's simplicity "means that we can imagine that it was a person who did this alone. They could be in any country". Mr Poupard added: "With what we see today, attacks that are criminal, from states, often for espionage or fraud but also more and more for sabotage or destruction, we are getting closer, clearly, to a state of war, a state of war that could be more complicated, probably, than those we've known until now." 

His comments echoed testimony from the head of the US National Security Agency, Admiral Michael Rogers, to the US Senate armed services committee on May 9.

Admiral Rogers spoke of "cyber effects" being used by states "to maintain the initiative just short of war",
He said: "Cyber war is not some future concept or cinematic spectacle - it is real, and here to stay."

Mr Poupard said "the most nightmare scenario, the point of view that Rogers expressed and which I share" would be "a sort of permanent war, between states, between states and other organisations, which can be criminal and terrorist organisations, where everyone will attack each other, without really knowing who did what; a sort of generalised chaos that could affect all of cyberspace". 

Contrary to Admiral Rogers, who said the US had warned France of "Russian activity" before Mr Macron's win, Mr Poupard did not point the finger at Russia. 

APT28 has been identified by the US government as a Russian intelligence outfit and blamed for hacks of the US election campaign, as well as anti-doping agencies and other targets. The group also is known by other names, including Fancy Bear.

Ein News:

You Might Also Read:

Hackers Came, But the French Were Prepared:

France Launches a Cyber Warfare Division:

Meet The Fancy Bears:

 

« UK’s Trident Nuclear Subs Vulnerability To Hackers
Putin Applauds Patriotic Russian Hackers »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Advisen

Advisen

Advisen is the leading provider of data, media, and technology solutions for the commercial property and casualty insurance market including cyber risk.

Bugcrowd

Bugcrowd

As leaders in crowdsourced security testing, Bugcrowd connects companies and their applications to a crowd of tens of thousands of security researchers to identify critical software vulnerabilities.

Cradlepoint

Cradlepoint

With Cradlepoint customers leverage the speed and economics of wired and wireless Internet broadband for branch, mobile, and IoT networks while maintaining end-to-end visibility, security and control.

TeachPrivacy

TeachPrivacy

TeachPrivacy provides computer-based privacy and data security training that is engaging, memorable, and understandable.

Taqnia Cyber

Taqnia Cyber

Taqnia Cyber specializes in the fields of cyber security, intelligence, operations, and training. It offers its services and consultations to both public and private sectors.

IFE Digital Systems

IFE Digital Systems

IFE Digital Systems conducts research, development and consultancy in risk, safety and security related to digital systems in critical infrastructure.

National Cybersecurity Competence Centre (NC3) - Czech Republic

National Cybersecurity Competence Centre (NC3) - Czech Republic

NC3 has been established in response to growing demands for practically applicable products and solutions for ensuring cybersecurity of critical and non-critical information infrastructures.

Space ISAC

Space ISAC

Space ISAC is the only all-threats security information source for the public and private space sector.

TierPoint

TierPoint

TierPoint delivers secure, reliable, and connected infrastructure solutions at the internet’s edge. We meet you where you are in your journey to solve for data storage, compute, and recovery.

ClearHub

ClearHub

The aim of ClearHub is simple: to give businesses like yours access to the best talent, all screened and technically tested by Clearvision’s expert team.

Zeva

Zeva

Zeva solves complex identity and encryption challenges for the federal government and corporations around the globe.

Certihash

Certihash

Certihash have developed the world’s first blockchain empowered suite of information security tools based on the NIST cybersecurity framework.

Devolutions

Devolutions

Devolutions make best-in-class Privileged Access Management, Password Management, and Remote Connection Management solutions available to ALL organizations — including SMBs.

Quantum eMotion (QeM)

Quantum eMotion (QeM)

Quantum eMotion is a Montreal-based advanced developer leading the way towards a new generation of quantum-safe encryption for the quantum computing age.

Lightpoint Global

Lightpoint Global

Lightpoint Global is a bespoke software development company. We also provide a spectrum of services such as IT consulting, business analysis, QA and testing, and DevOps services.

Mitra Informatics Integration (MII)

Mitra Informatics Integration (MII)

Mitra Informatics Integration is the information communication technology solution business of the Metrodata Group.