According to the Federal Office for Information Security (BSI), political actors such as parties are currently particularly targeted by cyber attacks. “Particularly in light of the upcoming European elections, an increased number of attacks can currently be expected,” a BSI spokeswoman told the dpa news agency.

According to the BSI and the Federal Office for the Protection of the Constitution, there is currently information on so-called phishing attacks against German parties, among others, which originate from a state cyber actor. However, this actor has not yet been named. In phishing, hackers try to pose as trustworthy entities using fake websites in order to steal data such as passwords.

Authority warns against publication of manipulated documents

Currently, so-called hack-and-leak attacks are the most common, said the BSI spokeswoman. In these attacks, non-public data or documents are stolen and then published, sometimes in a falsified form. The cyber threat level for the targets of such attacks is currently high. The BSI did not provide any further details.

Back in February, the Federal Office for the Protection of the Constitution and the BSI had already warned the parties about the danger of hack-and-leak operations in the 2024 election year. In the letter dated February 21, the security authorities warned against underestimating such cyber attacks. “By deliberately publishing and falsifying information, state-controlled cyber and influence actors in particular (…) can carry out disinformation campaigns.” These are aimed at “manipulating public opinion, spreading false ideas or undermining trust in democratic processes.”

BSI calls for more political attention to cybersecurity

In particular, the security authorities warned politicians about attempted attacks “in which perpetrators registered domains that resembled the official webmail domains,” a common tactic in phishing attacks. Officials were sent emails in the name of their organization’s IT support, in which they were asked to log in to the manipulated website using their login details.

Overall, Germany is poorly prepared for cyber attacks, warned the BSI a few days ago. Authority President Claudia Plattner told the Tagesspiegel that there is currently no joint situation report from the federal and state governments and no structures that would enable effective coordination in the event of a crisis. “But we absolutely need this,” said Plattner. She appealed to politicians to prioritize the issue of cyber security “before something major happens and, for example, a series of ATMs fail.” One does not always have to “learn from one’s mistakes.”

According to the Federal Office for Information Security (BSI), political actors such as parties are currently particularly targeted by cyber attacks. “Particularly in light of the upcoming European elections, an increased number of attacks can currently be expected,” a BSI spokeswoman told the dpa news agency.

According to the BSI and the Federal Office for the Protection of the Constitution, there is currently information on so-called phishing attacks against German parties, among others, which originate from a state cyber actor. However, this actor has not yet been named. In phishing, hackers try to pose as trustworthy entities using fake websites in order to steal data such as passwords.

SOURCE