German government confirms hackers blitzkrieged its servers to steal data

Probably-Russian Fancy Bear team fingered for attack

By Iain Thomson in San Francisco


The German Interior ministry has confirmed that it has identified a serious attack against its servers, amidst reports that the culprits were the Russian APT28 – aka Fancy Bear – hacking group.

On Wednesday local news site DPA International reported that the German government discovered a serious intrusion into its servers in December 2017. The attack is thought to have seen data exfiltrated for up to a year before its discovery.

Johannes Dimroth, a spokesman for the ministry, confirmed that "government information technology and networks," had been affected by an intrusion. "The incident is being treated as a high priority and with substantial resources," he said.

Fancy Bear has been active for at least a decade. Its activities have often non-Russian government targets. The group was fingered for the Democratic National Committee hack ahead of the 2017 US Presidential election, attacks during the 2017 French election, brazen rummaging in Finnish security forces' servers and even attacks on the sports doping authorities.

In December 2016 Germany's Federal Office for the Protection of the Constitution took the unusual step of issuing a public warning about hacking ahead of national elections in September 2017. That warning named Russia as the likely culprit.

Russia has always denied that it has anything to do with Fancy Bear, but the types of malware used, the software and coding styles, and its choice of targets suggest that Putin and his pals might have Fancy Bear dancing to their tune.

This latest attack on Germany will not serve to warm relations between these two historical enemies. With Russia looking to take an increasingly muscular role in European affairs, hopefully such conflicts will not leave the online realm. ®

Sign up to our NewsletterGet IT in your inbox daily


More from The Register

Chip-for-tat escalates: Qualcomm's billion-Euro bond to block Apple iPhone sales in Germany

Some mobes off the shelves pending appeal in international patent battle drama

Microsoft Germany emerging from behind Deutsche Telekom cloud

Frankfurt, Berlin regions to launch end of 2019, T-Systems 'trustee' deal to be retired

Germany has a problem with the entire point of Amazon's daft Dash buttons – and bans them

Sour Krauts aren't wrong: Tap-to-order gizmo is really dumb

Volkswagen faces fresh Dieselgate lawsuit in Germany – report

Angry investors want to know why they weren't told before everyone else

Germany hacked: Angela Merkel's colleagues among mass data dump victims

Politicians, journalists and other public figures targeted

Apple yanks iPhones from sale in Germany – and maybe China, too – amid Qualcomm spat

Courts crack down on Cupertino idiot-tax operation as tech patent war explodes

Ugh, of course Germany trounces Blighty for cyber security salaries

Britons never, never, never shall be wage slaves. Oh wait

Germany pushes router security rules, OpenWRT and CCC push back

Hacker coalition wants device support timeline clarified, free firmware mandates

Germany to roll out €100bn gigabit internet network

Preparing for the Internet of Things

Germany slaps ban on kids' smartwatches for being 'secret spyware'

Hands up, whose parents are listening in on this class?