A group of hackers has published the personal details of hundreds of German politicians, but also German artists and local YouTube celebrities.
Security
The data was uploaded online and later promoted via Twitter, starting a few days before the Christmas holiday. The source of the data appears to be the victims' smartphones. Details about how the data was stolen and exfiltrated from infected phones remain unclear, at the time of writing.
According to German news outlets [1, 2, 3], which first reported the hack, the leaked data contains names, home addresses, phone numbers, email addresses, photo IDs, personal photos, and personal chat histories.
The leak affects politicians part of all of Germany's left and centrist political parties, such as the CDU, CSU, SPD, Greens, Left Party, and the FDP. Data from Germany's populist right-wing party, the AfD (Alternative for Germany), was not included.
Some of the data goes as far back as 2012, according to an expert on German politics who analyzed it today, and the newest dates back to October 2018.
Few preliminary speculations (!) about the #german #hackerangriff: some stolen data sets seem to be outdated (2012). doxing aimed at the political center and left. probably not one single breach/hack but aggregation over time. Psychological effect seems to be the main purpose
— Matthias Schulze (@perceptic0n) January 4, 2019
A journalist for German newspaper BILD claims some of the personal chat histories he analyzed contained evidence of corruption.
The leaked data, which was illegally collected until October 2018 and released December 2018, but just found now, is still publicly available.
— Julian Röpcke (@JulianRoepcke) January 4, 2019
I searched through it 5 hours last night, read maybe 3%of it and already found cases of corruption and bad political scandals.#BTleaks
The leak has been currently branded as an act of "hacktivism," but foreign nation-state cyber intelligence groups have been known to mask influence operations as hacktivisim in the past. The most recent case is Russia, which used the Anonymous brand to distribute hacked materials stolen from the World Anti-Doping Agency (WADA).
The leak has caused panic among Germany's political class, many fearing they'll be subject to online fraud or identity theft attacks, due to the very sensitive nature of the exposed documents.
Twitter has intervened earlier today and suspended the account distributing links to the data, based on a new rule it set in place last October that banned the distribution of hacked materials on its site.
Cybercrime and malware, 2019 predictions
More cybersecurity coverage:
- Hacker steals 10 years worth of data from San Diego school district
- Ransomware suspected in cyberattack that crippled major US newspapers
- Hackers steal personal info of 1,000 North Korean defectors
- Security researcher cracks Google's Widevine DRM (L3 only)
- Chrome OS to block USB access while the screen is locked
- EU to fund bug bounty programs for 14 open source projects starting January 2019
- Open source predictions for 2019 TechRepublic
- Firefox warns if the website you're visiting suffered a data breach CNET