Thursday

28th Jul 2016

Hackers stole Van Rompuy's emails

Hackers last summer raided the emails of EU Council chief Herman Van Rompuy and 10 other senior officials.

The breach was exposed last week by a team of US academics and cyber security firms which has been tracking a hackers group known by two names - Comment and Byzantine Candor.

Dear EUobserver reader

Subscribe now for unrestricted access to EUobserver.

Sign up for 30 days' free trial, no obligation. Full subscription only 15 € / month or 150 € / year.

  1. Unlimited access on desktop and mobile
  2. All premium articles, analysis, commentary and investigations
  3. EUobserver archives

EUobserver is the only independent news media covering EU affairs in Brussels and all 28 member states.

♡ We value your support.

If you already have an account click here to login.

The US investigators, who asked to remain anonymous, showed computer logs detailing the hackers' behaviour to the Bloomberg news agency.

According to the logs, the group accessed the EU Council's computer network at around 9am Brussels time on four occasions - 8 July, 11 July, 13 July and 18 July last year.

It hacked 17 email accounts, grabbing around seven days' of correspondence and any attached files from each account.

Apart from Van Rompuy himself, the group stole information from three former and one current Van Rompuy cabinet staff - Sem Fabrizi, Jose Leandro, Zoltan Martinusz and Odile Renaud-Basso.

It also scalped Giles de Kerchove (the EU's counter-terrorism tsar), Leonardo Schiavio (a senior EU foreign policy official) and four officials dealing with trade and development - Boguslaw Majewski, Massimo Parnisari, Alda Silveira Reis and Jan Van Elst.

The EU was at the time involved in sensitive talks on the second Greek bailout.

Speculation among the US investigators is that the hackers are linked to the Chinese government. But China has repeatedly denied that it conducts any cyber espionage.

"The confirmation on the specific victims comes from the computer logs gathered by the researchers, which show the hackers' activities in the EU Council networks via monitoring of the hackers' own command and control system, including the specific users whose accounts were accessed. We were provided with the logs and interviewed some of the researchers," Bloomberg's Michael Riley told EUobserver.

An EU official said the EU Council does not comment on individual cases.

He noted that highly sensitive or classified information could not be so easily compromised because it is stored on a separate computer network which is not connected to the Internet.

"Hackers frequently target the EU institutions ... many of these attacks show a high degree of sophistication. Some are based on techniques used by government agencies," he added.

The Comment/Byzantine Candor group also targeted US oil firm Halliburton, a Canadian magistrate involved in a Chinese extradition case and the International Republican Institute in the US among 20 or so victims.

Stakeholders' Highlights

  1. GoogleHelping Emergency Services Find You When You Need It Most
  2. Counter BalanceWhat's New in the Investment Plan for Europe: Business as Usual or True Innovation ?
  3. Belgrade Security ForumMigration, Security and Solidarity within Global Disorder: Academic Event 2016
  4. GoogleHow Google Fights Piracy: Creating Value While Fighting Piracy
  5. EJC"My Visit to Israel" - Opinion by MEP Lopez Aguilar, Chair of the EP Working Group on Antisemitism
  6. World VisionChildren Migrating, Out of School and at Work as Hunger Deepens in Southern Africa
  7. European Healthy Lifestyle AllianceStand-Up (and Exercise) to Prevent Chronic Diseases
  8. Centre Maurits CoppietersLaunches a Real-time News Hub Specialised in EU Stakeholders
  9. Dialogue PlatformFethullah Gulen Calls for International Probe Into Turkey Coup Allegations
  10. GoogleEU-US Privacy Shield: Restoring Faith in Data Flows and Transatlantic Relations
  11. World VisionWorld Leaders & Youth Advocates Launch Partnership to End Violence Vs. Children
  12. Counter BalanceReport: Institutionalised Corruption in Romania's Third Largest Company