Thursday

28th Mar 2024

Investigation

Russian spies or US neo-Nazis: Who hacked Macron?

  • Moscow: Kremlin spokesman and media have rubbished the US allegations (Photo: Alex F)

A US cyber security firm has published new claims that a Kremlin-linked group was behind the recent cyber-attack on France’s incoming leader, Emmanuel Macron.

The US-based firm, Flashpoint, said on Friday (12 May) that 38 emails in the Macron cache, which was leaked on 5 May, on the eve of the French vote, contained links to “phishing” websites set up by a hacker group called Fancy Bear.

Read and decide

Join EUobserver today

Get the EU news that really matters

Instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

Phishing is a kind of attack which tries to steal people’s passwords by sending them links to bogus sites.

Fancy Bear, also known as Pawn Storm, is a group said by US intelligence to be a front for Russia’s GRU military intelligence service.

“Flashpoint identified phishing emails in the contents of the leak that distributed links to domains associated with Fancy Bear”, it said.

It noted that some of the leaked emails also contained data pointing to a Russian firm that was linked to Russia’s FSB intelligence service, but it said it was “possible that this metadata is a false flag planted in order to implicate Russian-speaking actors”.

Despite the caveat, it added: “Flashpoint currently assesses with moderate confidence that Fancy Bear is likely linked to the hack and leak”.

It ruled out “hacktivist groups” and “criminal groups” on grounds that these would have either sought publicity or money for the stolen data.

It also said that “the threat actors who undertook this leak will likely continue targeting Macron and other European leaders in order to destabilise European political systems”, adding that the upcoming elections in the UK and Germany were at risk.

The head of a US intelligence service, the National Security Agency (NSA), earlier this week also said Russia hacked Macron.

But other experts were less sure.

Trend Macro, a Japanese-based firm that has tracked Pawn Storm’s activity for over two years, has said the group tried to hack Macron in March.

But Loic Guezo, its Paris-based expert, recently told EUobserver the 5-May operation looked too amateurish to be Pawn Storm/Fancy Bear and could have been the handiwork of an individual far-right activist.

Commenting on Flashpoint’s analysis on Friday, Guezo said the fact that 38 of the thousands of leaked Macron emails contained Pawn Storm/Fancy Bear links did not mean that any of those 38 links was instrumental in the attack.

“It’s not because you see some phishing coming from Pawn Storm that the global leak is traceable to Pawn Storm”, he said.

A separate investigation by Le Monde, a French newspaper, published on Friday also highlighted the fact that US-based neo-Nazi activists had boasted on internet forums that they had got hold of anti-Macron material.

US neo-Nazis linked to Macron hack

The spread of stolen emails designed to harm Emmanuel Macron was linked to US-based neo-Nazis, according to a French investigation.

Investigation

Lessons for Germany from the Macron hack

The way the Macron team defended itself against hackers contained lessons for other political parties in Europe, but experts do not agree whether Russia did it.

Opinion

Why UK-EU defence and security deal may be difficult

Rather than assuming a pro-European Labour government in London will automatically open doors in Brussels, the Labour party needs to consider what it may be able to offer to incentivise EU leaders to factor the UK into their defence thinking.

Latest News

  1. German bank freezes account of Jewish peace group
  2. EU Modernisation Fund: an open door for fossil gas in Romania
  3. 'Swiftly dial back' interest rates, ECB told
  4. Moscow's terror attack, security and Gaza
  5. Why UK-EU defence and security deal may be difficult
  6. EU unveils plan to create a European cross-border degree
  7. How migrants risk becoming drug addicts along Balkan route
  8. 2024: A Space Odyssey — why the galaxy needs regulating

Stakeholders' Highlights

  1. Nordic Council of MinistersJoin the Nordic Food Systems Takeover at COP28
  2. Nordic Council of MinistersHow women and men are affected differently by climate policy
  3. Nordic Council of MinistersArtist Jessie Kleemann at Nordic pavilion during UN climate summit COP28
  4. Nordic Council of MinistersCOP28: Gathering Nordic and global experts to put food and health on the agenda
  5. Friedrich Naumann FoundationPoems of Liberty – Call for Submission “Human Rights in Inhume War”: 250€ honorary fee for selected poems
  6. World BankWorld Bank report: How to create a future where the rewards of technology benefit all levels of society?

Join EUobserver

EU news that matters

Join us