Germany's Intelligence Chief Accuses Russia of Cyber Warfare

Uploaded on 2016-07-07 in INTELLIGENCE--Europe, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE-Hot Spots-Russia, TECHNOLOGY--Hackers

Germany's domestic intelligence agency has accused Russia of engaging in ongoing cyberwarfare. The aim, he said, is to steal information and to carry out sabotage against its enemies - both real and imagined.

Recently Hans-Georg Maassen, the head of Germany's domestic intelligence agency (BfV), said that in the past year or so, Russia had launched attacks against the German parliament, NATO members and French TV.

"Cyberspace is a place for hybrid warfare," Maassen said. "It opens a new space of operations for espionage and sabotage.

"The campaigns being monitored by the BfV are generally about obtaining information, that is spying," he said. "However, Russian secret services have also shown a readiness to carry out sabotage."

Germany's lower house of parliament was attacked last year by a phishing tool named Sofacy, which is used by a Russian-based group called Pawn Storm. The hackers apparently wanted to steal personal and corporate data from the Christian Democratic Union (CDU), and high-profile individuals, according to Trend Micro, a security research firm. The CDU is Germany's leading political party, which is headed by Chancellor Angela Merkel. The attack also reportedly affected a computer in Merkel's legislative office. The attack appears to have been an attempt to get Germany to abandon its support for Ukraine.

Going After Russia's Enemies

Pawn Storm is believed to either have ties to the Russian government or be a part of it. These "cyberattacks carried out by Russian secret services are part of multi-year international operations that are aimed at obtaining strategic information," Maassen said. "Some of these operations can be traced back as far as seven to 11 years."

In the realm of sabotage, Sofacy is also believed to have brought down part of Ukraine's power grid last year. Pawn Storm is dedicated to going after the Kremlin's real or imagined enemies, including the US government and its military, as well as NATO and governments in eastern Europe and Turkey, according to multiple cybersecurity experts.

"Pawn Storm clearly targets groups that could be perceived as a risk to Russian politics and interests," according to Trend Micro. The cyber-warriors also hit France's TV5 Monde television channel in April 2015, forcing it off the air and placing jihadist propaganda messages on the station's website and social media accounts.

So far the CDU computers have not been breached, according to one official in Berlin, who spoke on condition of anonymity. But, he said, they aren't taking any chances. "We have nonetheless made appropriate changes to our IT infrastructure," he said. "We can't say anything on the reasons for this."

Ein News

« Hacking Pros Don’t Trust The Internet
Is The Boom In Ransomware Stabilizing? »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

InfoSec People

InfoSec People

InfoSec People is a boutique cyber and technology recruitment consultancy, built by genuine experts.

SEWORKS

SEWORKS

SEWORKS provides offensive and defensive app security that ensures mobile and web apps are safe from dangerous hacking threats.

CSIRT-NQN

CSIRT-NQN

CSIRT-NQN is the Computer Incident Response Team for the Argentine province of Neuquen.

National Cybersecurity Student Association (NCSA) - USA

National Cybersecurity Student Association (NCSA) - USA

The National Cybersecurity Student Association is a one-stop-shop to enhance the educational and professional development of cybersecurity students through activities, networking and collaboration.

Randstad

Randstad

Randstad provide outsourcing, staffing, consulting and workforce solutions in the USA across a wide range of job sectors including IT and cybersecurity.

360° Online Brand Protection

360° Online Brand Protection

360° Online Brand Protection have developed a response to monitor counterfeiting and piracy activity at the online point of sale.

National Cyber Coordination & Command Centre (NC4) - Malaysia

National Cyber Coordination & Command Centre (NC4) - Malaysia

NC4 is established as a center for dealing with cyber threats and crisis at the national level in Malaysia.

Lancera

Lancera

Lancera provides growth accelerating Software Development, Web Presence and Cybersecurity Solutions with a focus on customer happiness.

Sotero

Sotero

Sotero is the first cloud-native, zero trust data security platform that consolidates your entire security stack into one easy-to-manage environment.

Zenity

Zenity

Zenity is the first and only security governance platform for low-code/no-code applications.

GeoComply

GeoComply

GeoComply provides fraud prevention and cybersecurity solutions that detect location fraud and help verify a user's true digital identity.

Arsen Cybersecurity

Arsen Cybersecurity

Arsen is a French cybersecurity startup, dedicated to enhancing human behaviors in cybersecurity.

PDI Technologies

PDI Technologies

PDI Technologies helps convenience retail and petroleum wholesale businesses around the globe increase efficiency and profitability by securely connecting their data and operations.

Neo Auth

Neo Auth

Neo Auth is an identity and access management solution to help organizations optimize their cybersecurity processes.

Auria

Auria

Auria advances complex space, missile, and cyber operations with visionary solutions and software.

TrnDigital

TrnDigital

Protect your business with Microsoft security as a service. TRN Digital is a trusted Microsoft managed security service provider in the USA.