Friday

30th Oct 2020

Exclusive

State-level espionage on EU tagged as 'Very High Threat'

The most successful attempts of espionage at a top EU institution are state sponsored, according to an internal document.

The restricted document presents an analysis of threats to the security of information at the General Secretariat of the Council (GSC).

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

The GSC administers over the Council, representing member states, as well as the more politically-oriented European Council.

"The majority of discovered, successful compromises of information in the GSC are from threat source level VERY HIGH (e.g. state sponsored attacks)," notes the document, dated 26 May and obtained by this website.

The GSC is a prime target because it deals with the negotiation and adoption of EU laws, coordinates member state policies, and develops the EU's common foreign and security policy.

It also helps negotiations on international agreements.

"Any country with a conflict between their national and EU interests or which may have an interest in EU information only, may try to undertake an attack on the security of information handled in GSC," it says.

The 28-page document was drafted by the Council's security committee.

It does not provide specific examples.

But it does highlight China, noting the country had in 2016 led the world in espionage malware, followed by Russia and the rest of Europe.

"The GSC can also be attacked via systems located in EU member states," it adds.

The most common attacks include phishing emails, enticing people to either click on a link or open an attachment.

One such attack took place in late November 2018 when a phishing campaign hacked into a network at the Cypriot ministry of foreign affairs.

The network was ultra-sensitive because the European Union uses it to facilitate cooperation on foreign policy issues.

Known as COREU, the network operates between the EU states, the Council of the European Union, the EU's foreign policy branch (EEAS) and the European Commission.

Experts says the campaign had been led by the Chinese government via its Strategic Support Force of the People's Liberation Army.

State-sponsored espionage is not the only threat.

Four threat-levels

The document spells out four levels of threat.

It classifies as low amateur hackers and open source researchers. Medium is reserved for insiders who do not have privileged access to systems.

High level is for "hactivists", privileged insiders, and any organisation carrying out cyber crime.

"The insider threat (deliberate actions by GSC staff against the security of information) is rare as evidenced by past incidents (only one case)," it notes.

Very high is for those carrying out government orders to hack systems.

The Council internal document's findings was compiled by the EU's intelligence centre (Intcen), US government sources, the Computer Emergency Response Team for the EU Institutions known as CERT-EU, Kaspersky Lab, Microsoft, among others.

The probe took place throughout 2017 and was updated in November last year.

Investigation

China suspected of bio-espionage in 'heart of EU'

Chinese spies have targeted Belgian biological warfare experts, vaccine-maker GSK, and other high-tech firms in the country, Belgium's intelligence service suspects.

EU commission on defensive over 'revolving doors'

The European Commission rubber-stamped over 99 percent requests by officials to take on jobs in the private sector, posing ethical questions in light of known examples where conflicts of interests appear to be clear cut.

Investigation

Violating promises and law, von der Leyen tests patience

Under EU Commission president Ursula von der Leyen, transparency was supposed to be a "guiding principle". Instead, the European Commission is asking Kafkaesque questions in response to an access to documents request, and failing to meet its legal deadline.

Future of Europe: EU Council urged to propose a chair

Since the German presidency promised the Conference on the Future of Europe would start under their leadership, the European Commission and MEPs hope the event will be launched soon. But there is one issue: who will chair the conference?

Nine-in-ten EU regions face revenue plunge, report finds

The decrease of revenues in 2020 of subnational authorities in France, Germany and Italy alone is estimated to be €30bn for the three countries, a new report by the European Committee of the Regions says.

News in Brief

  1. Polish government rows back on abortion ruling
  2. EU threatens legal action against Poland on rule of law
  3. 'Several dead' after earthquake hits Greece and Turkey
  4. Hungary faces EU court over asylum restrictions
  5. Polish PM urges end to abortion protests to 'protect elderly'
  6. EU to fund cross-border hospital transfers
  7. Some 140 migrants drown on way to Spanish islands
  8. EU central bank preparing new rescue measures

Rightwing MEPs bend to Saudi will after Khashoggi death

Saudi dissident and journalist Jamal Khashoggi was killed two years ago on 2 October. Since then, mainly centre-right, conservative and far-right MEPs have voted down any moves to restrict, limit or ban the sales of weapons to the Saudi regime.

EU parliament vows not to cave in to budget pressure

The parliament's majorty dismisses the German EU presidency's proposal on the rule of law conditionality, which has emerged as the main political obstacle to agree on the next long-term EU budget.

Stakeholders' Highlights

  1. UNESDAMaking healthier diets the easy choice
  2. Nordic Council of MinistersUN Secretary General to meet with Nordic Council on COVID-19
  3. UNESDAWell-designed Deposit Return Schemes can help reach Single-Use Plastics Directive targets
  4. Nordic Council of MinistersNordic Council meets Belarusian opposition leader Svetlana Tichanovskaja
  5. Nordic Council of MinistersNordic Region to invest DKK 250 million in green digitalised business sector
  6. UNESDAReducing packaging waste – a huge opportunity for circularity

Latest News

  1. Nice attack: EU urges world leaders to stop hate speech
  2. Europe is back in (partial) lockdown
  3. Gender equality still 60 years away, warns study
  4. I'm an 'election observer' - but what do we actually do?
  5. Deal in reach on linking EU funds to rule of law
  6. EU Commission's Covid-19 expert offers bleak outlook
  7. Belgium's collaboration with Sudan's secret service: my story
  8. What do ordinary Belarusians want from the EU?

Join EUobserver

Support quality EU news

Join us