IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Over 150 French Government systems hacked

Hackers use a Trojan to compromise more than 150 French Ministry of Finance computers.

France

The French Ministry of Finance was hit by an unprecedented cyber attack in December, with over 150 computers compromised, according to reports.

Hackers got their hands on documents related to the current French presidency of the G20 and international economic affairs, Paris Match reported.

Patrick Pailloux, the executive director of l'ANSSI (Agence Nationale de la Securite des Systemes d'Information), said it was the first time the French state had been targeted by an attack of this scale.

Pailloux also revealed other French Government departments had been targeted.

The hackers used a Trojan to infiltrate systems, having sent emails to French Government workers, using what appeared to be standard social engineering tactics.

Pailloux said an operation had been carried out to improve defences at the Government department.

There have been rumblings the attack came from China, although no solid proof has emerged.

"I can say that we know of hacker groups in China specialising in this sort of attack and claiming to be funded directly or indirectly by the military and/or government," David Harley, senior research fellow at ESET, told IT PRO.

"Hopefully, the French Finance Ministry has technical measures in place to counter malicious software, whether it's AV or a more multi-layered approach."

Other experts said the hack proved targeted attacks against Government organisations have become more commonplace in recent times.

"Often designed to sneak access to sensitive files, the cyber perpetrators are often professionals seeking access to specific pieces of information," said Mark Darvill, director of security firm AEP Networks, which works with Governments, as well as the military and businesses.

"Without a scaled-up approach to cyber defence, national security is left open to compromise and sensitive information is at the mercy of those who have the technical knowledge to launch these targeted attacks," he said.

Last month, Foreign Secretary William Hague said the UK Government had been hit by the infamous Zeus Trojan.

Targets were also sent emails containing a link to the Trojan, indicating the attack techniques used against the French and UK Governments were almost identical.

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

Ransomware group Conti threatens to overthrow Costa Rican government
ransomware

Ransomware group Conti threatens to overthrow Costa Rican government

17 May 2022
UK plan to abandon big tech regulator powers “makes no sense”
Policy & legislation

UK plan to abandon big tech regulator powers “makes no sense”

3 May 2022
How governments can build resilience in a new normal
Whitepaper

How governments can build resilience in a new normal

27 Apr 2022
Google Cloud wins tender with Israeli judiciary
Cloud

Google Cloud wins tender with Israeli judiciary

12 Apr 2022

Most Popular

Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
Russian hackers declare war on 10 countries after failed Eurovision DDoS attack
hacking

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack

16 May 2022
IT admin deletes company’s databases and is jailed for seven years
Policy & legislation

IT admin deletes company’s databases and is jailed for seven years

16 May 2022