Thursday

1st Jun 2023

Investigation

Russian spies or US neo-Nazis: Who hacked Macron?

  • Moscow: Kremlin spokesman and media have rubbished the US allegations (Photo: Alex F)

A US cyber security firm has published new claims that a Kremlin-linked group was behind the recent cyber-attack on France’s incoming leader, Emmanuel Macron.

The US-based firm, Flashpoint, said on Friday (12 May) that 38 emails in the Macron cache, which was leaked on 5 May, on the eve of the French vote, contained links to “phishing” websites set up by a hacker group called Fancy Bear.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

Phishing is a kind of attack which tries to steal people’s passwords by sending them links to bogus sites.

Fancy Bear, also known as Pawn Storm, is a group said by US intelligence to be a front for Russia’s GRU military intelligence service.

“Flashpoint identified phishing emails in the contents of the leak that distributed links to domains associated with Fancy Bear”, it said.

It noted that some of the leaked emails also contained data pointing to a Russian firm that was linked to Russia’s FSB intelligence service, but it said it was “possible that this metadata is a false flag planted in order to implicate Russian-speaking actors”.

Despite the caveat, it added: “Flashpoint currently assesses with moderate confidence that Fancy Bear is likely linked to the hack and leak”.

It ruled out “hacktivist groups” and “criminal groups” on grounds that these would have either sought publicity or money for the stolen data.

It also said that “the threat actors who undertook this leak will likely continue targeting Macron and other European leaders in order to destabilise European political systems”, adding that the upcoming elections in the UK and Germany were at risk.

The head of a US intelligence service, the National Security Agency (NSA), earlier this week also said Russia hacked Macron.

But other experts were less sure.

Trend Macro, a Japanese-based firm that has tracked Pawn Storm’s activity for over two years, has said the group tried to hack Macron in March.

But Loic Guezo, its Paris-based expert, recently told EUobserver the 5-May operation looked too amateurish to be Pawn Storm/Fancy Bear and could have been the handiwork of an individual far-right activist.

Commenting on Flashpoint’s analysis on Friday, Guezo said the fact that 38 of the thousands of leaked Macron emails contained Pawn Storm/Fancy Bear links did not mean that any of those 38 links was instrumental in the attack.

“It’s not because you see some phishing coming from Pawn Storm that the global leak is traceable to Pawn Storm”, he said.

A separate investigation by Le Monde, a French newspaper, published on Friday also highlighted the fact that US-based neo-Nazi activists had boasted on internet forums that they had got hold of anti-Macron material.

US neo-Nazis linked to Macron hack

The spread of stolen emails designed to harm Emmanuel Macron was linked to US-based neo-Nazis, according to a French investigation.

Investigation

Lessons for Germany from the Macron hack

The way the Macron team defended itself against hackers contained lessons for other political parties in Europe, but experts do not agree whether Russia did it.

Column

What a Spanish novelist can teach us about communality

In a world where cultural clashes and sectarianism seems to be on the increase, Spanish novelist Javier Cercas (b.1962) takes the opposite approach. He cherishes both life in the big city and in the countryside.

Opinion

Poland and Hungary's ugly divorce over Ukraine

What started in 2015 as a 'friends-with-benefits' relationship between Viktor Orbán and Jarosław Kaczyński, for Hungary and Poland, is ending in disgust and enmity — which will not be overcome until both leaders leave.

Latest News

  1. Europe's TV union wooing Lavrov for splashy interview
  2. ECB: eurozone home prices could see 'disorderly' fall
  3. Adapting to Southern Europe's 'new normal' — from droughts to floods
  4. Want to stop forced migration from West Africa? Start by banning bottom trawling
  5. Germany unsure if Orbán fit to be 'EU president'
  6. EU Parliament chief given report on MEP abuse 30 weeks before sanction
  7. EU clashes over protection of workers exposed to asbestos
  8. EU to blacklist nine Russians over jailing of dissident

Stakeholders' Highlights

  1. International Sustainable Finance CentreJoin CEE Sustainable Finance Summit, 15 – 19 May 2023, high-level event for finance & business
  2. ICLEISeven actionable measures to make food procurement in Europe more sustainable
  3. World BankWorld Bank Report Highlights Role of Human Development for a Successful Green Transition in Europe
  4. Nordic Council of MinistersNordic summit to step up the fight against food loss and waste
  5. Nordic Council of MinistersThink-tank: Strengthen co-operation around tech giants’ influence in the Nordics
  6. EFBWWEFBWW calls for the EC to stop exploitation in subcontracting chains

Join EUobserver

Support quality EU news

Join us