Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

Germany Confronts Russian Ambassador Over Cyberattack

Germany said Thursday it is seeking EU sanctions against a Russian man over his alleged role in the hacking of the German parliament at a time when evidence shows he was working for Russian intelligence.

Germany said Thursday it is seeking EU sanctions against a Russian man over his alleged role in the hacking of the German parliament at a time when evidence shows he was working for Russian intelligence.

Germany’s Foreign Ministry said it called in Russian ambassador Sergei Nechayev to inform him in person of the move.

Senior German diplomat Miguel Berger “strongly condemned the attack on Germany’s parliament in the name of the German government” while meeting with Nechayev, the ministry said.

Berger told Nechayev that Germany would be pursuing EU sanctions against Russian citizen Dmitriy Badin, and possibly others, under a new regime established last year to respond to cyberattacks, the ministry said.

He referred to a warrant issued May 5 by federal German prosecutors for Badin, an alleged officer with Russia’s GRU military intelligence agency. Badin was already being sought by U.S. authorities and is believed to be part of the hacker group known as APT28, or Fancy Bear.

German prosecutors allege that Badin, “acting jointly with other persons not yet identified,” had “undertaken an intelligence operation against Germany for the intelligence service of a foreign power,” the ministry said.

“The accused is suspected of being responsible for the hacker attack on the German parliament in April/May 2015 as a member of the APT28 group,” the ministry said. “There is reliable evidence that he was a member of the GRU military intelligence agency at the time of the attack.”

Advertisement. Scroll to continue reading.

Chancellor Angela Merkel said earlier this month there was “hard evidence” that correspondence from her parliamentary office was among the documents targeted in the attack.

The Russian Foreign Ministry did not immediately respond to a request for comment, but Leonid Slutsky, head of the foreign affairs committee in the Russian parliament’s lower house, called the German accusations “baseless.”

He warned that any further sanctions Berlin might impose would be “destructive,” creating an “artificial irritant” in bilateral relations.

Russian officials have repeatedly denied any involvement by Moscow in the hacking attack. They have similarly dismissed charges of Russian meddling in the 2016 U.S. presidential election and alleged cyberattacks on other Western nations and institutions.

Diplomatic ties between Germany and Russia are already tense, following the brazen killing of a Georgian man on the streets of Berlin last year. Prosecutors have suggested the hit was ordered either by Moscow or authorities in the Russian republic of Chechnya.

Russian national Vadim Sokolov was arrested near the scene and is accused of carrying out the killing with official help. The case has already led to tit-for-tat expulsions of diplomats from Berlin and Moscow.

Noting the ongoing investigation of the slaying, the Foreign Ministry said Thursday it “reserves the right to take further measures” beyond the sanctions against Badin.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Malware & Threats

Threat actors are increasingly abusing Microsoft OneNote documents to deliver malware in both targeted and spray-and-pray campaigns.

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...