German defence ministry ‘hacked by Russia’

Berlin says attackers infiltrated Germany’s IVBB communications network

Germany admits cyber security breach by ‘Russian hackers’
(Image credit: This content is subject to copyright.)

Germany has admitted that its foreign and defence ministries fell victim to a cybersecurity breach, reportedly carried out by Russian hacking group APT28, also known as Fancy Bear.

Two years ago, security analyst Dmitri Alperovitch of Crowdstrike told the Christian Science Monitor he had “high level confidence” that Fancy Bear was a Russian state intelligence agency. The same group is accused of hacking email accounts belonging to the Clinton campaign during the 2016 US presidential election.

According to media reports, the German breach could have occurred up to a year ago, when the group placed a piece of malware on a secure network called Informationsverbund Berlin-Bonn (IVBB).

Subscribe to The Week

Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

SUBSCRIBE & SAVE
https://cdn.mos.cms.futurecdn.net/flexiimages/jacafc5zvs1692883516.jpg

Sign up for The Week's Free Newsletters

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

Sign up

The IVBB is a communications system that operates independently of other public networks, “for supposed added security”, Deutches Welle says.

A spokesman for the German Interior Ministry told Reuters the attack has been “isolated and brought under control”, and that authorities are working on addressing the incident “with high priority and significant resources.”

Authorities have given no indication of how much data had been intercepted or stolen, and declined to comment on the contents of any data that may have been compromised.

Business Insider says the German government receives “around 20 attempted hacks per day”, and intelligence services perform network penetration testing once a week.

Continue reading for free

We hope you're enjoying The Week's refreshingly open-minded journalism.

Subscribed to The Week? Register your account with the same email as your subscription.