Summary: German authorities have identified a Beijing-backed threat actor as responsible for a cyberattack on the country’s Federal Agency for Cartography and Geodesy in 2021, marking a significant diplomatic response from Germany. This incident highlights ongoing concerns regarding Chinese cyber espionage targeting critical infrastructure and government processes in Germany and Europe.
Threat Actor: Beijing-backed threat actor | Beijing-backed threat actor
Victim: Federal Agency for Cartography and Geodesy (BKG) | Federal Agency for Cartography and Geodesy
Key Point :
- Germany’s foreign ministry summoned the Chinese ambassador for the first time since 1989 due to the cyberattack.
- The attack aimed at espionage and targeted critical infrastructure, compromising devices of private individuals and companies.
- German officials condemned the attack, emphasizing the threat posed by Chinese cyber actors to national and European digital sovereignty.
- In 2023, there have been increased targeted cyberattacks linked to suspected Chinese state actors against various sectors in Germany.
- Germany has taken measures to enhance information security following the attack and barred critical components from Chinese companies in its 5G networks.
German authorities on Wednesday said that a Beijing-backed threat actor was behind a cyberattack three years ago on the country’s state cartography agency, and summoned the Chinese ambassador to Berlin for further discussions.
The action represents the first time that Germany summoned China’s ambassador since the Tiananmen Square crackdown in 1989, Germany’s foreign ministry spokesperson Sebastian Fischer said during a press briefing.
It also follows an incident in May, when Germany recalled its ambassador to Russia following alleged Moscow-backed cyberattacks targeting the country’s defense, aerospace and IT companies, as well as the German Social Democratic Party.
According to an investigation by German security services, the goal of the attack on the country’s Federal Agency for Cartography and Geodesy (BKG), carried out at the end of 2021, was espionage, the country’s interior ministry (BMI) said in a statement on Wednesday.
The cartography agency “performs an important function for a variety of government and private sector institutions, including in the area of critical infrastructure,” BMI said. For example, it provides current, official geodata from Germany and supports the development of geodata infrastructure.
German state officials strongly condemned the attack.
“This serious cyberattack shows how great the danger is from Chinese cyberattacks and espionage. We are resolutely opposed to these threats,” German interior minister Nancy Faeser said in a statement. “We call on China to refrain from and stop such cyberattacks. These cyberattacks threaten the digital sovereignty of Germany and Europe.”
According to an investigation into the incident, the unnamed China-linked hacker group “compromised end devices belonging to private individuals and companies in order to use them for the attack.”
Following the attack, the BKG “took a comprehensive set of measures” and “significantly improved its level of information security,” the interior ministry said.
Chinese threats
German authorities warned that Chinese state actors pose a serious threat to organizations in Germany and Europe. BMI said that in 2023, suspected state-controlled Chinese cyber actors carried out targeted cyberattacks on the country’s companies, authorities, private individuals and political institutions.
The alleged goal of these campaigns was to obtain information about “political opinion-forming and decision-making processes as well as positions of the federal government on issues of German and European foreign policy with an impact on the Chinese state.”
German authorities claim that the approach of the Chinese cyber espionage actors “underwent a significant qualitative and quantitative development, enabling a previously unseen reach and effectiveness to be achieved.”
Earlier in April, three people were arrested in Germany on suspicion of spying for China and arranging to transfer information on technology with potential military uses. In July, Germany said that it would bar the use of critical components made by Chinese companies Huawei and ZTE in core parts of the country’s 5G networks.
Recorded Future
Intelligence Cloud.
Source: https://therecord.media/germany-summons-chinese-ambassador-over-hack