World

The Russians are using ‘a new style of attack’ against France’s frontrunner candidate

A hacking group linked by cybersecurity experts to Russia’s military intelligence apparatus has begun taking aim at France’s centrist presidential candidate, Emmanuel Macron, the cybersecurity firm Trend Micro said in a report published on Tuesday.

On March 15, the group — known as Fancy Bear, Pawn Storm, Sednit, APT28, Sofacy, or STRONTIUM — began registering domain names such as “onedrive-en-marche.fr” and “mail-en-marche.fr” in an attempt to trick members of Macron’s campaign team into clicking on links that looked affiliated with his political party, En Marche.

“A huge revelation in this Trend Micro report is that Fancy Bear has significantly upped the sophistication of its cyber attacks,” said Greg Martin, the CEO of cybersecurity firm JASK. “They’re taking advantage of vulnerabilities in cloud-based email services like Gmail to trick people into downloading fake applications, and compromising their inboxes without even having to steal a password.”

You've reached your daily free article limit.

Subscribe and support our veteran writing staff to continue reading.

Get Full Ad-Free Access For Just $0.50/Week

Enjoy unlimited digital access to our Military Culture, Defense, and Foreign Policy coverage content and support a veteran owned business. Already a subscriber?

A hacking group linked by cybersecurity experts to Russia’s military intelligence apparatus has begun taking aim at France’s centrist presidential candidate, Emmanuel Macron, the cybersecurity firm Trend Micro said in a report published on Tuesday.

On March 15, the group — known as Fancy Bear, Pawn Storm, Sednit, APT28, Sofacy, or STRONTIUM — began registering domain names such as “onedrive-en-marche.fr” and “mail-en-marche.fr” in an attempt to trick members of Macron’s campaign team into clicking on links that looked affiliated with his political party, En Marche.

“A huge revelation in this Trend Micro report is that Fancy Bear has significantly upped the sophistication of its cyber attacks,” said Greg Martin, the CEO of cybersecurity firm JASK. “They’re taking advantage of vulnerabilities in cloud-based email services like Gmail to trick people into downloading fake applications, and compromising their inboxes without even having to steal a password.”

Martin said that when targeted by this kind of attack, known as “OAuth phishing,” the victim can’t just change their password to regain access to their account.

“It’s a new style of attack is very deadly and unprecedented,” he said. “It’s the first time we have seen this in the wild.”

 

Read the whole story from Business Insider.

About SOFREP News Team View All Posts

The SOFREP News Team is a collective of professional military journalists. Brandon Tyler Webb is the SOFREP News Team's Editor-in-Chief. Guy D. McCardle is the SOFREP News Team's Managing Editor. Brandon and Guy both manage the SOFREP News Team.

COMMENTS

You must become a subscriber or login to view or post comments on this article.

More from SOFREP

REAL EXPERTS.
REAL NEWS.

Join SOFREP for insider access and analysis.

TRY 14 DAYS FREE

Already a subscriber? Log In