UK's GCHQ blamed for cyber attack on Belgian telecoms company
The agency was named in the latest revelations from NSA whistleblower Edward Snowden
Cahal Milmo is the chief reporter of The Independent and has been with the paper since 2000. He was born in London and previously worked at the Press Association news agency. He has reported on assignment at home and abroad, including Rwanda, Sudan and Burkina Faso, the phone hacking scandal and the London Olympics. In his spare time he is a keen runner and cyclist, and keeps an allotment.
Friday 20 September 2013
Britain is facing a damaging public clash with a European ally after GCHQ was blamed for a cyber attack on Belgium’s largest telecommunications company and the country’s prosecutors announced they were treating the incident as “state-sponsored espionage”.
The Cheltenham-based eavesdropping agency was named in the latest revelations from American whistleblower Edward Snowden as the origin of a sophisticated assault on Belgacom, whose customers include the European Commission and the European Parliament.
An alleged internal GCHQ presentation, marked “Top Secret” and leaked by Snowden, suggests that British intelligence officers targeted Belgacom employees over a number of years with sophisticated malware to gain access to key infrastructure, including the company’s international router.
Prosecutors in Brussels said that initial investigations showed there had been an attack on Belgacom which could only have been possible with “significant financial and logistical backing”. When combined with the complexity of the techniques deployed, this indicated an “international state-sponsored espionage operation,” investigators said.
The Belgian authorities and politicians yesterday stopped short of pointing the finger directly at Britain but the country’s prime minister said the revelations from former National Security Agency contractor Snowden, published by Der Spiegel, were being “closely examined” and warned of unspecified retaliation if the attack was proven.
Elio di Rupo said: “If the hypothesis involving another country is confirmed, we will of course undertake the necessary steps.”
The allegations are the latest in a raft of damaging revelations flowing from Snowden’s document cache, which has exposed the depth of Anglo-American operations to gain access to vast quantities of email and telecommunications traffic across the globe.
The NSA has been implicated in operations ranging from interception of the emails and phone calls of Brazilian president Dilma Rousseff to inserting “back doors” into computer hardware. But confirmation that Britain has been hacking the phone system of a close ally - and the host nation for key European Union institutions - would be also highly damaging.
GCHQ said last night that it had a “longstanding practice” of not commenting on leaks or intelligence matters.
But a spokesman added: “All GCHQ’s work is carried out in accordance with a strict legal and policy framework which ensures that its activities are authorised, necessary and proportionate, and that there is rigorous oversight.”
The latest documents from Snowden, which appear to date from around 2010, detail “Operation Socialist”, an assault on Belgacom’s “core GRX routers” - the hardware used by mobile phone companies to make calls between different networks and different countries possible.
The slideshow presentation states that GCHQ’s alleged aim was to undertake “Man in the Middle” or “MiTM” operations “against targets roaming using smart phones”.
Man in the Middle attacks are a highly-sophisticated deception which allows a third party to intervene in an electronic conversation and pretend to be each of the other two parties, obtaining valuable information or spreading disinformation without the targets realising.
One of the slides appears to confirm that several Belgacom networks have been compromised, boasting that access “continues to expand” and GCHQ is “getting close” to accessing the routers. The presentation concludes with a large logo featuring construction cranes and the word “success”.
Belgacom and one of its subsidiaries jointly owned by Swiss and South African companies, which also appears to have been targeted, confirmed it had been the victim of a “digital intrusion” on its internal computer network but insisted there was “no indication” that customer data including emails or conversations had been accessed.
There was speculation yesterday that although the company, which is partly state-owned, handles communications involving EU institutions, GCHQ’s alleged interest may have been in users of its international networks linked to Middle Eastern countries such as Syria and Yemen.
Belgian prosecutors, who were called in by Belgacom earlier this summer, said preliminary investigations showed several servers and work stations had been affected by the attack.
In a statement, the Federal Prosecutors office in Brussels said: “Based on the information currently available, the aim of the hacking seems to be more to gather strategic information and not to commit acts of sabotage or cause economic damage.”
Website users raised funds after Jennifer Lawrence nude photo leak
The Tardis-style house measures in at just 83 inches wide
- 1 David Sedaris: What I learnt from Fitbit about the world around me
- 2 Saudis risk new Muslim division with proposal to move Mohamed’s tomb
- 3 A teacher speaks out: 'I'm effectively being forced out of a career that I wanted to love'
- 4 Cee Lo Green: 'It's only rape if the victim is conscious'
- 5 Jennifer Lawrence 'naked sex video' will be leaked next, threatens 4Chan celebrity photo hacker
Emma Watson on Jennifer Lawrence nude pictures leak: 'Even worse than seeing women's privacy violated is reading the comments'
Jessica Brown Findlay: Downton Abbey actress is linked to list of celebrities targeted by hackers
Saudis risk new Muslim division with proposal to move Mohamed’s tomb
Ariana Grande nude photos leak: Pictures are completely fake, say representatives
Steven Sotloff 'beheading': British captive shown in Isis video which claims to show death of second US journalist
Rotherham child sex abuse scandal: Labour Home Office to be probed over what Tony Blair's government knew - and when
What do immigrants really think of Britain? Polish immigrant's Reddit post goes viral
Ashya King: Parents of five-year-old boy refused permission to visit him in hospital and denied bail at Spanish court
With Douglas Carswell joining Ukip, my party has taken another giant step forward
When elitism grips the top of British society to this extent, there is only one answer: abolish private schools
Ashya King: 'Cruel NHS has not given us the treatment we need', says father of five-year-old with brain tumour who fled to Spain
£28000 - £34000 Per Annum: The Green Recruitment Company: Job Title: Renewable...
£26000 - £34000 Per Annum: The Green Recruitment Company: Job Title: Energy Pr...
£15000 - £21000 per annum: Randstad Education Chelmsford: Would you like to wo...
Competitive & Flexible: Randstad Education Cambridge: The JobRandstad Educatio...