BERLIN – Personal data and documents from hundreds of German politicians and public figures have been published online, in what appears one of the most far-reaching cyber attacks in a country that has become a target of choice for hackers.
It was unclear if the breach, which triggered an emergency meeting of the national cyber defence agency, was the result of a hack or a leak, an Interior Ministry spokesman said.
Last year, lawmakers said a powerful cyber attack breached the foreign ministry’s computer network.
Security officials have blamed most previous breaches on a Russian hacking group, while the Kremlin has consistently denied involvement in such incidents.
Cyber defence body BSI met in reaction to the latest attack to coordinate the response of intelligence and other federal agencies, a spokesman said.
Public broadcaster rbb, which broke the story, said the identity of the hackers and their motive were not known.
Government spokeswoman Martina Fietz confirmed personal data and documents “belonging to hundreds of politicians and public figures” had been released online.
German media said a fax number and two email addresses used by Merkel had been published. “The information and data drained from the chancellery and that relate to the chancellor are manageable,” Fietz told a news conference.
A defence ministry spokesman said the armed forces were not affected, and broadcaster ARD – affiliated to rbb – said its journalists had as yet detected no incriminating content.
“This data breach . . . is alarming, but at the same time it’s not surprising,” said Mike Hart at commercial cyber security firm FireEye, citing previous hacks.
“. . . It highlights the need for the government to take cyber security very seriously.”
Security officials have blamed most previous attacks on a Russian hacking group APT28 that experts say has close ties to a Russian spy agency. Experts held the same group responsible for an attack ahead of the 2016 United States presidential election.
Bild newspaper reported that German authorities had asked the US spy agency NSA for help in investigating the incident.
The mass-selling daily also said the secure internal network of Germany’s government was not hit by the hackers, citing sources inside the BSI.
The BSI said all but one of the seven parties in the Bundestag lower house were affected. German media said that party was the right-wing Alternative for Germany (AfD).
Broadcaster rbb reported earlier that the data, from hundreds of politicians and published on a Twitter account, included addresses, personal letters and copies of identity cards.
“Whoever is responsible, wants to intimidate politicians. That will not succeed,” said Lars Klingbeil, secretary general of the centre-left Social Democrats, Merkel’s coalition partner. (Reuters)