Germany: Critical cyberattacks target government and military networks

Photo of the BfV service building in Cologne [German Federal Office for the Protection of the Constitution]

German security services have revealed that critical national infrastructures such as government and military networks have been the target of a series of cyberattacks in November, raising broader concerns about their overall resilience.

Der Spiegel reported on Thursday (29 November) that the German intelligence authority, the Bundesamt für Verfassungsschutz (BfV), have identified the attacks as taking place on November 14.

“The BfV was able to detect attacks again in the framework of investigating the cyberattack campaign ‘Snake,'” German security officials told Der Spiegel. “The victims are mainly in the field of government and politics.”

No data has been known to be stolen. The ‘Snake’ hacker group is rumoured to be associated with the Russian authorities.

‘Snake’ first came into public knowledge in 2014, when Ukrainian government systems were hit by a Russian cyber weapon of the same name. The strike is believed to have performed Computer Network Exploitation (CNE) in addition to Computer Network Attacks.

A detection of an earlier attack in December 2017 has also been disclosed, and questions are now being raised as to the overall security of German network infrastructures.

UK intelligence services: We don't disclose every cyber vulnerability

In a landmark move, the UK intelligence services unveiled on Thursday (29 November) the process by which they decide to disclose security vulnerabilities to technology firms. Not every weakness discovered in a system is always disclosed to the company in question, they revealed. 

The vulnerability of critical national infrastructures to such sophisticated attacks has recently been highlighted elsewhere in Europe, after the UK’s joint committee on the National Security Structure published a damning report on Britain’s security in the public sector.

The report states that the UK government is failing to act with the “urgency and forcefulness that the situation demands,” and that critical national infrastructure is a “natural target for a major cyberattack” due to its importance to the economy and everyday life.

EU citizens concerned about cybersecurity ahead of 2019 elections, study finds

An increasing number of EU citizens are concerned about the manipulation of elections through cyberattacks and malicious interventions, according to figures published on Monday (26 November).

“Too often in our past, the UK has been ill-prepared to deal with emerging risks,” said a statement from Chair of the Committee, MP Margaret Beckett, drawing attention to some of the more severe cyber attacks that have hit the UK over recent years, such as the WannaCry ransomware strike in 2017.

Europol described the 2017 WannaCry cyberattack as “unprecedented” in scale, after it had struck 200,000 computers across 150 countries.

The hit had seen systems infected with a ransomware which targeted Microsoft Windows operating systems and had disrupted a range of public services worldwide, such as the UK’s National Health Service and German rail infrastructure.

Subscribe to our newsletters

Subscribe