German cyber security officials defend data breach response

Published January 6, 2019
The incident has shocked the establishment and prompted calls for security agencies to clarify whether any security deficiencies they were aware of had been exploited, and if they could have acted sooner to head off the breach. ─ File photo
The incident has shocked the establishment and prompted calls for security agencies to clarify whether any security deficiencies they were aware of had been exploited, and if they could have acted sooner to head off the breach. ─ File photo

BERLIN: Germany’s BSI cyber defence agency on Saturday defended its role in responding to a far-reaching data breach, saying it could not have connected individual cases it was aware of last year until the entire data release became public.

The government said on Friday that personal data and documents from hundreds of German politicians and public figures including Chancellor Angela Merkel had been published online, in what appeared to be one of Germany’s biggest data breaches.

The incident has shocked the establishment and prompted calls for security agencies to clarify whether any security deficiencies they were aware of had been exploited, and if they could have acted sooner to head off the breach.

The BSI said in a statement that it was contacted by a lawmaker early December about suspicious activity on their private email and social media accounts.

“Only by becoming aware of the release of the data sets via the Twitter account ‘G0d’ on Jan. 3, 2019, could the BSI in a further analysis on Jan. 4, 2019 connect this case and four other cases that the BSI became aware of during 2018,” it said. “At the beginning of December 2018, it was not foreseeable that there would be more cases.”

The BSI said on Friday all but one of the seven parties in the lower house had been affected. German media said that party was the right-wing Alternative for Germany (AfD).

Last year, lawmakers said a powerful cyber attack had breached the foreign ministry’s computer network.

Security officials have blamed most previous breaches of data security on a Russian hacking group, while the Kremlin has consistently denied involvement in such incidents.

After the latest data breach, Justice Minister Katarina Barley said she was considering stricter security requirements for software makers and internet platform operators.

“We are examining the extent to which stricter legal provisions are useful and necessary here,” she told weekly newspaper Welt am Sonntag, according to a pre-released article.

Authorities were investigating all possibilities, including espionage, one government source said on Friday, adding that it was unlikely any single person could have compiled the massive amounts of data that had been released.

Published in Dawn, January 6th, 2019

Opinion

Editorial

Untruths and politics
Updated 01 Oct, 2022

Untruths and politics

It would arguably be in the national interest for the Supreme Court to take up the cipher and settle the matter.
Farmers’ protest
01 Oct, 2022

Farmers’ protest

SEVERAL hundred farmers have converged on Islamabad for the last three days to protest against the soaring costs of...
Dasht-i-Barchi bombing
01 Oct, 2022

Dasht-i-Barchi bombing

ON Friday morning, Kabul’s Dasht-i-Barchi neighbourhood was rocked by a terrorist attack targeting an educational...
Avenfield relief
Updated 30 Sep, 2022

Avenfield relief

Accountability cannot continue to be treated like a revolving door in which politicians can be shoved in or pulled out on a whim.
Dar’s plans
Updated 30 Sep, 2022

Dar’s plans

For starters, the country doesn’t have spare dollars to burn.
Another targeted attack
30 Sep, 2022

Another targeted attack

WEDNESDAY’S deadly attack on three Chinese-origin individuals in Karachi’s Saddar area demonstrates the threat...