Germany's Intelligence Chief Accuses Russia of Cyber Warfare

Germany's domestic intelligence agency has accused Russia of engaging in ongoing cyberwarfare. The aim, he said, is to steal information and to carry out sabotage against its enemies - both real and imagined.

Recently Hans-Georg Maassen, the head of Germany's domestic intelligence agency (BfV), said that in the past year or so, Russia had launched attacks against the German parliament, NATO members and French TV.

"Cyberspace is a place for hybrid warfare," Maassen said. "It opens a new space of operations for espionage and sabotage.

"The campaigns being monitored by the BfV are generally about obtaining information, that is spying," he said. "However, Russian secret services have also shown a readiness to carry out sabotage."

Germany's lower house of parliament was attacked last year by a phishing tool named Sofacy, which is used by a Russian-based group called Pawn Storm. The hackers apparently wanted to steal personal and corporate data from the Christian Democratic Union (CDU), and high-profile individuals, according to Trend Micro, a security research firm. The CDU is Germany's leading political party, which is headed by Chancellor Angela Merkel. The attack also reportedly affected a computer in Merkel's legislative office. The attack appears to have been an attempt to get Germany to abandon its support for Ukraine.

Going After Russia's Enemies

Pawn Storm is believed to either have ties to the Russian government or be a part of it. These "cyberattacks carried out by Russian secret services are part of multi-year international operations that are aimed at obtaining strategic information," Maassen said. "Some of these operations can be traced back as far as seven to 11 years."

In the realm of sabotage, Sofacy is also believed to have brought down part of Ukraine's power grid last year. Pawn Storm is dedicated to going after the Kremlin's real or imagined enemies, including the US government and its military, as well as NATO and governments in eastern Europe and Turkey, according to multiple cybersecurity experts.

"Pawn Storm clearly targets groups that could be perceived as a risk to Russian politics and interests," according to Trend Micro. The cyber-warriors also hit France's TV5 Monde television channel in April 2015, forcing it off the air and placing jihadist propaganda messages on the station's website and social media accounts.

So far the CDU computers have not been breached, according to one official in Berlin, who spoke on condition of anonymity. But, he said, they aren't taking any chances. "We have nonetheless made appropriate changes to our IT infrastructure," he said. "We can't say anything on the reasons for this."

Ein News

« Hacking Pros Don’t Trust The Internet
Is The Boom In Ransomware Stabilizing? »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Satisnet

Satisnet

Satisnet is a leading Security Reseller, Managed Security Services Provider (MSSP) and Cyber Training Innovator, with operations throughout the UK, EMEA and United States.

Leviathan Security Group

Leviathan Security Group

Leviathan provides a broad set of information security services ranging from low-level technical engineering to strategic business consulting.

DataVisor

DataVisor

DataVisor is a big data fraud detection and anti-money laundering solution.

CERT-PH

CERT-PH

CERT-PH is the National Computer Emergency Response Team and the highest body for cybersecurity related activities in the Philippines.

TechStak

TechStak

TechStak is the easiest way for businesses to find and connect with IT Pros and other technology solution providers in their area.

PeckShield

PeckShield

PeckShield is a blockchain security company which aims to elevate the security, privacy, and usability of entire blockchain ecosystem by offering top-notch, industry-leading services and products.

Randstad

Randstad

Randstad provide outsourcing, staffing, consulting and workforce solutions in the USA across a wide range of job sectors including IT and cybersecurity.

TrueFort

TrueFort

TrueFort take an application-first approach that offers comprehensive protection for real-time visibility and analysis, protection and better communication across business, IT, and security teams.

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications and Information Protection is the technical security and intelligence service of Ukraine, under the control of the President of Ukraine.

Secura B.V.

Secura B.V.

Secura is an independent specialized cybersecurity expert, providing insights to protect valuable assets and data.

Otorio

Otorio

OTORIO delivers industrial cybersecurity and digital risk-management solutions and services. We help our customers to keep their revenue-generating operations resilient, efficient, and safe.

Crowe

Crowe

Crowe is a public accounting, consulting, and technology firm that combines deep industry and specialized expertise with innovation.

Appalachia Technologies

Appalachia Technologies

Appalachia is a full service Managed Services Provider with a focus on cybersecurity, backed by the best engineers.

RedLattice

RedLattice

RedLattice are at the cutting edge of tool development and AI-assisted vulnerability research in cybersecurity.

Minimus

Minimus

Minimus, a pioneering application security startup, offers a groundbreaking platform that eliminates over 95% of Common Vulnerabilities and Exposures (CVEs) from software supply chains.

Cyvore Security

Cyvore Security

Cyvore combines cutting-edge AI, machine learning, and behavioral analytics to detect, investigate, and neutralize threats before they compromise your organization.