Thursday

2nd Feb 2023

Investigation

Russian spies or US neo-Nazis: Who hacked Macron?

  • Moscow: Kremlin spokesman and media have rubbished the US allegations (Photo: Alex F)

A US cyber security firm has published new claims that a Kremlin-linked group was behind the recent cyber-attack on France’s incoming leader, Emmanuel Macron.

The US-based firm, Flashpoint, said on Friday (12 May) that 38 emails in the Macron cache, which was leaked on 5 May, on the eve of the French vote, contained links to “phishing” websites set up by a hacker group called Fancy Bear.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

Phishing is a kind of attack which tries to steal people’s passwords by sending them links to bogus sites.

Fancy Bear, also known as Pawn Storm, is a group said by US intelligence to be a front for Russia’s GRU military intelligence service.

“Flashpoint identified phishing emails in the contents of the leak that distributed links to domains associated with Fancy Bear”, it said.

It noted that some of the leaked emails also contained data pointing to a Russian firm that was linked to Russia’s FSB intelligence service, but it said it was “possible that this metadata is a false flag planted in order to implicate Russian-speaking actors”.

Despite the caveat, it added: “Flashpoint currently assesses with moderate confidence that Fancy Bear is likely linked to the hack and leak”.

It ruled out “hacktivist groups” and “criminal groups” on grounds that these would have either sought publicity or money for the stolen data.

It also said that “the threat actors who undertook this leak will likely continue targeting Macron and other European leaders in order to destabilise European political systems”, adding that the upcoming elections in the UK and Germany were at risk.

The head of a US intelligence service, the National Security Agency (NSA), earlier this week also said Russia hacked Macron.

But other experts were less sure.

Trend Macro, a Japanese-based firm that has tracked Pawn Storm’s activity for over two years, has said the group tried to hack Macron in March.

But Loic Guezo, its Paris-based expert, recently told EUobserver the 5-May operation looked too amateurish to be Pawn Storm/Fancy Bear and could have been the handiwork of an individual far-right activist.

Commenting on Flashpoint’s analysis on Friday, Guezo said the fact that 38 of the thousands of leaked Macron emails contained Pawn Storm/Fancy Bear links did not mean that any of those 38 links was instrumental in the attack.

“It’s not because you see some phishing coming from Pawn Storm that the global leak is traceable to Pawn Storm”, he said.

A separate investigation by Le Monde, a French newspaper, published on Friday also highlighted the fact that US-based neo-Nazi activists had boasted on internet forums that they had got hold of anti-Macron material.

US neo-Nazis linked to Macron hack

The spread of stolen emails designed to harm Emmanuel Macron was linked to US-based neo-Nazis, according to a French investigation.

Investigation

Lessons for Germany from the Macron hack

The way the Macron team defended itself against hackers contained lessons for other political parties in Europe, but experts do not agree whether Russia did it.

Column

Democracy — is it in crisis or renaissance?

Countries that were once democratising are now moving in the other direction — think of Turkey, Myanmar, Hungary or Tunisia. On the other hand, in autocracies mass mobilisation rarely succeeds in changing political institutions. Think of Belarus, Iran or Algeria.

Latest News

  1. EU green industry plan could spark 'dangerous subsidy race'
  2. Wolves should be defended, EU ministers urge
  3. EU Commission wants drones for Bulgaria on Turkey border
  4. MEPs rally ahead of vote for gig-economy workers' rights
  5. Europe is giving more aid to Ukraine than you think
  6. Hungary blames conspiracy for EU corruption rating
  7. Democracy — is it in crisis or renaissance?
  8. EU lobby register still riddled with errors

Stakeholders' Highlights

  1. Party of the European LeftJOB ALERT - Seeking a Communications Manager (FT) for our Brussels office!
  2. European Parliamentary Forum for Sexual & Reproductive Rights (EPF)Launch of the EPF Contraception Policy Atlas Europe 2023. 8th February. Register now.
  3. Europan Patent OfficeHydrogen patents for a clean energy future: A global trend analysis of innovation along hydrogen value chains
  4. Forum EuropeConnecting the World from the Skies calls for global cooperation in NTN rollout
  5. EFBWWCouncil issues disappointing position ignoring the threats posed by asbestos
  6. Nordic Council of MinistersLarge Nordic youth delegation at COP15 biodiversity summit in Montreal

Join EUobserver

Support quality EU news

Join us