Russian Hackers Try To Attack German Governing Party.

Uploaded on 2016-05-18 in TECHNOLOGY--Hackers, GOVERNMENT-National, FREE TO VIEW

Konrad-Adenauer-Haus, headquarters of the CDU, in Berlin

A group of hackers known to target critics of the Russian government has been trying since April to attack the computer systems of German Chancellor Angela Merkel's Christian Democratic Union party, a security research firm say. 

Researchers at Trend Micro said the hackers, called Pawn Storm, appear to be trying to steal personal and corporate data from the CDU and high-profile individuals using two free email services. A year ago, the research group linked Pawn Storm to hacking attacks on the Bundestag, the lower house of parliament.

In the latest attempts, the hackers apparently tried to coordinate credential-phishing attacks, using computer services based in Latvia and the Netherlands, to gain access to the systems of the CDU and other high-profile users, Trend Micro said in a blog post.

"Up until now no attacks have taken place," a source at the CDU headquarters in Berlin said. "We have nonetheless made appropriate changes to our IT infrastructure. We can't say anything on the reasons for this."

Pawn Storm has been active for more than a decade and is considered one of the longest-lasting cyber espionage groups.

Several major computer research groups say it has targeted opposition groups in Russia as well as NATO and governments in adjacent Eastern European countries, Turkey and the United States. The military, defense companies and media in those countries have also been attacked, Trend Micro said.

"Pawn Storm clearly targets groups that could be perceived as a risk to Russian politics and interests," Trend Micro said.
The cyber-attack on the German parliament was first reported in May 2015. German media have said replacing the computer system could cost the government millions of euros.

The news magazine Der Spiegel also quoted an internal investigation as saying there were indications that a Russian intelligence agency had staged the attack.
In January 2015, German government websites, including Merkel's website, were hacked in an attack claimed by a group demanding that Berlin end support for the Ukrainian government.

Reuters:

« Think You Know Your Customers? Try Authenticating Them
Anonymous Declares War On Global Banks »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Okta

Okta

Okta is an enterprise-grade identity management service, built from the ground up in the cloud to address the challenges of a cloud-mobile-interconnected world.

Axiomatics

Axiomatics

Axiomatics is the originator and leading provider of runtime, fine-grained authorization delivered with attribute-based access control (ABAC) for applications, data, APIs, and microservices.

Onapsis

Onapsis

Onapsis is a pioneer in cybersecurity and compliance solutions for cloud and on-premise ERP and business-critical applications.

TechDefence Labs

TechDefence Labs

TechDefence Labs provide pentesting and security assessment services for networks, web apps, mobile apps and source code reviews.

Compass Security

Compass Security

Compass Security is a specialist IT Security consultancy firm based in Switzerland. Services include pentesting, security assessments, digital forensics and security training.

Synectics Solutions

Synectics Solutions

Synectics deliver solutions for reducing risk, combating financial crime, and enabling organisations to meet their compliance and regulatory commitments.

T-REX

T-REX

T-REX is a coworking space, technology incubator, and entrepreneur resource center for technology startups.

Elron Ventures

Elron Ventures

Elron partner with early stage ventures to build companies that transform lives and industries. Our main areas of focus are enterprise software, cybersecurity, and healthcare.

eXate

eXate

eXate provides pioneering technology that empowers organisations to protect, control and manage their sensitive data centrally, providing a complete data privacy solution.

mxHERO

mxHERO

mxHERO reduces the risks inherent with ransom and cyber-security threats specific to email.

Nasuni

Nasuni

The Nasuni File Data Platform offers the protection, detection, and recovery of file shares from ransomware attacks or random disasters within minutes.

Excite Cyber

Excite Cyber

Excite Technology Services (formerly Cipherpoint) is focused on improving the security posture of our customers.

DACTA Global

DACTA Global

DACTA was established with the aim of simplifying the perception of complexity surrounding digital security challenges and solutions.

Lightpath

Lightpath

Lightpath is revolutionizing how organizations connect to their digital destinations by combining our next-generation network with our next-generation customer service.

TrustFour

TrustFour

TrustFour is a pioneer in workload and non-human identity security, providing innovative solutions for compliance, remediation, post quantum resiliency, and advanced threat defense.

Hoplon InfoSec

Hoplon InfoSec

At Hoplon InfoSec, our extensive experience enables us to effectively combat the present-day cybersecurity challenges.