Romanian Presidential Election Undermined By Russia

Uploaded on 2024-12-09 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

Authorities in the EU member nation, Romania, have revealed details of what appears to be a major attempt to interfere in the country’s presidential elections using the social media platform TikTok, and a series of cyber attacks.

The Romanian Intelligence Service (SRI) disclosed that over 85,000 computer network intrusions were launched against election websites and IT systems throughout the first round of the NATO member state’s election process. 

Based on the disclosure by the SRI, the persistent computer network intrusions are indicative of a state-sponsored cyber unit with considerable resources and capabilities at its disposal.

In consequence, Romania’s Supreme Court has moved quickly to annul the results of the first round of the presidential election. The Court has ruled that the first round process must be rerun and in a statement said the annulment was based on Article 146(f) of the Constitution, emphasising the need to ensure the correctness and legality of the electoral process. Romania's domestic intelligence service says there are signs the effort was "co-ordinated by a state-sponsored actor", which they clearly think is Russian.

Calin Georgescu, a  critic of NATO who has previously praised Russian President Putin, was almost unknown in Romania until he won the first round of voting in the presidential elections. Georgescu, a pro-Russian candidate who wants to end Romania’s support for Ukraine amid Russia’s invasion, emerged as the front-runner on November 24 despite being a political outsider who declared zero campaign spending.

Now, Romanian intelligence agencies say that his sudden and surprise surge in popularity is down to a "highly organised" and "guerrilla" campaign on social media, sharing identical messaging and using influencers.They say it was conducted from "external locations" to bypass controls.

A separate intelligence assessment says that Romania has been identified as an "enemy state" by Moscow and a priority target for what it calls "aggressive hybrid actions".

The politically disruptive information, came into the public domain only a few days before the second round of voting, as a result of declassified documents published by the outgoing President, Klaus Iohannis. They reveal how paid content supporting Georgescu was promoted on TikTok, without being marked as election campaigning, in violation of the platform’s own rules and of Romanian electoral law.

Other candidates’ content was subject to strict controls and Georgescu insists that he spent nothing on election promotion, denying he was even campaigning. However. the intelligence documents released identify one TikTok account alone which they say made payments of $381,000 (£299,819) to users who were promoting Georgescu in the five weeks from 24th October,

The European Commission has ordered TikTok to “freeze and preserve data” amid the ongoing Romanian presidential elections and declassified intelligence “pointing to interference from Russia.”

The declassified documents released were all papers drawn up for a meeting of the security council following the first round of the presidential election. They also reveal that access data for electoral websites was stolen from legitimate users and published online “on cyber-crime platforms originating from Russia”. Separately, the intelligence agencies report some 85,000 attempted hacks in an attempt to access electoral data and change content, including on election day. 

The report says the cyber-attackers used advanced methods to remain anonymous, working in a way and on a scale "typical of state-sponsored actors".

In comment, Craig Watt, an expert Threat Intelligence Consultant at Quorum Cyber said, "This recent event demonstrates that Russia’s ‘Information Confrontation Doctrine’ continues to form the foundation of Moscow’s strategic cyber targeting as influence assets capitalise on European political divisions to influence Western demographics in the direction of NATO-scepticism."

An investigation is ongoing to determine more details about the campaign and precisely who was responsible.  "It will be critical for the western intelligence community to work together to combat these malign cyber operations that continue to attack the fabric of European democracy." Watt concludes.

Presidency.ro   |    Reuters   |    BBC   |   AlJazeera   |    CNN   |   Record   

Image: Ideogram

You Might Also Read: 

Social Media Algorithms & Their Effects [extract]:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

 

Cyber Security Intelligence: Captured Organised & Accessible

 

« US Telecoms Customer Data Stolen By Chinese Hackers 
TikTok Will Be Banned In The USA »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Law Enforcement Cyber Center (LECC)

Law Enforcement Cyber Center (LECC)

LECC is designed to assist police, digital forensic investigators, detectives, and prosecutors who are investigating and preventing crimes that involve technology.

Norton Rose Fulbright

Norton Rose Fulbright

Norton Rose Fulbright is a global business law firm. Practice areas include Data protection, Privacy and Cybersecurity.

GuardKnox

GuardKnox

GuardKnox protects the users of connected vehicles against threats that can endanger their physical safety and the safety of their personal information.

VKANSEE

VKANSEE

VKANSEE offer the world's thinnest optical fingerprint sensor for mobile device protection.

TunnelBear

TunnelBear

TunnelBear is a Virtual Private Network services provider offering secure encrypted access to the internet.

Telecommunications & Digital Government Regulatory Authority (TDRA) - UAE

Telecommunications & Digital Government Regulatory Authority (TDRA) - UAE

TDRA focuses on regulating the telecommunications sector and enabling government entities in the field of smart transformation. It is responsible for the overall digital infrastructure in the UAE.

Healthcare Fraud Shield (HCFS)

Healthcare Fraud Shield (HCFS)

The focus of Healthcare Fraud Shield is solely on healthcare fraud prevention and payment integrity with a successful approach based on many unique advantages we deliver to our clients.

Cyber Risk Aware

Cyber Risk Aware

Cyber Risk Aware provide a security awareness and phishing simulation platform that focuses on real threats and educates and empowers employees to be the first line of defence.

Cythereal

Cythereal

Cythereal is the leader in predicting and preventing advanced malware attacks. Security Automation for the Overwhelmed Administrator.

evolutionQ

evolutionQ

evolutionQ delivers quantum-risk management strategies and robust cybersecurity tools designed to be safe in an era with quantum computing technologies.

Involta

Involta

Involta orchestrates IT transformation journeys using well-defined and rigorous processes to deliver hybrid cloud solutions, consulting and data center services tailored to our clients’ needs.

Finite State

Finite State

Finite State enables product security teams to protect the devices we rely on every day through market-leading software threat, vulnerability, and risk management.

Qevlar AI

Qevlar AI

Qevlar AI empowers SOC teams, to eliminate redundant tasks and refocus on what truly matters - making the most of every employee within the SecOps team.

Multipoint Group

Multipoint Group

Multipoint is an information security and protection solutions company operating in the South EMEA region through value-added distribution channels.

Cure53

Cure53

Cure53 offers classic black-box penetration tests (zero-knowledge) as well as white-box tests and code audits.

ThreatMon

ThreatMon

Gain insights into emerging threats with real-time data and AI-driven analysis to stay ahead of cyber risks. Detect, analyze, and respond to threats before they happen.