Related Links

Related Stories

  • NSA Collects Private Financial Details of Europeans
    According to Spiegel, Edward Snowden leaks indicate that the NSA has a wide-ranging project designed to collect financial transaction data particularly from Europe, the Middle East and Africa.
  • NSA Shown to Operate a MITM Hack in Brazil
    In case any doubts remain, new Snowden revelations first published in Brazil, show that the NSA engages in economic espionage, uses mainstream hacking techniques, and spies on diplomats and the banking system.
  • Did the NSA Subvert the Security of IPv6?
    Following the Snowden leaks revealing Bullrun – the NSA program to crack the world's encryption – there is an emerging consensus that users can no longer automatically trust any security.
  • NSA and GCHQ Crack Majority of Encrypted Traffic
    Given the effort taken by the NSA and GCHQ spy agencies to monitor the greater part of the world’s internet traffic, it was never likely that they would simply ignore all of the encrypted traffic. The latest of the Edward Snowden files show that they did not.
  • NSA Revealed Spying on the UN and EU Embassies
    The latest revelations from Edward Snowden published by Der Spiegel and Laura Poitras, the American film maker based in Berlin and visited by David Miranda before his detention at Heathrow, shows extensive and sophisticated NSA surveillance of both the EU and UN organizations in the US.

Top 5 Stories


Belgacom Hacked; NSA Involvement Suspected

17 September 2013

Coinciding with a report in De Standaard, Belgian telecoms firm Belgacom issued a statement yesterday saying it had successfully cleansed its internal network of "an unknown virus in a number of units in our internal IT-system."

The Belgacom statement makes no mention of the likely culprit, saying only that it "has filed a complaint against an unknown third party and is granting its full support to the investigation that is being performed by the Federal Prosecutor." The main thrust of the statement is that an intrusion was discovered and removed, and that Belgacom customers have not been impacted.

De Standaard is not so reserved. "Everything suggests," it reports, "that the US National Security Agency has hacked Belgacom since 2011." There is no public proof of this, but the newspaper believes there is little doubt: the primary intrusion seems to have been in Belgacom's Bics subsidiary which is the leading telecoms provider in Africa and the Middle East.

This news emerged at the same time as Der Spiegel in Germany revealed that leaked documents from Edward Snowden indicate NSA interest in the financial details of people in Europe, Africa and the Middle East.

A subsequent press conference attended yesterday by Belgacom CEO Didier Bellens and the Minister of Public Enterprises, Jean-Pascal Labille, declined to comment on any suspected source for the attack. "It is up to the court to do its job. Once the perpetrators are identified, we will respond appropriately, I assure you," said Labille.

The Belgian public prosecutor would also not yet comment on the suspected culprit, but said, "The hackers had significant financial and logistical resources and used specific malware and advanced encryption techniques." This is taken to be an indication that it was a state-sponsored attack. All fingers seem to point at either or both the NSA and GCHQ (whose Tempora project has specifically targeted the fiber links of telecoms companies).

Stefaan Van Hecke, a member of the Belgian Federal Parliament and leader of the Green party, immediately called for the suspension of the EU/US free trade negotiations if it is shown that the NSA is implicated in the hack. Renaat Landuyt, a member of the Belgian the SP.A party, added his own concern over the lack of action against NSA intrusions. "We know that it happens, we know how easily that happens, and everyone  continues as if nothing happened."    

The depth of concern and anger over this intrusion in Belgium is because the state is the largest shareholder in Belgacom -- the attackers, whoever they are, have effectively attacked the Belgium state.

Update (25 Sep 2013)
Since this article was written, Der Spiegel has published details from new Edward Snowden leaks that point the finger more at GCHQ than at the NSA.

A "top secret" Government Communications Headquarters (GCHQ) presentation seen by SPIEGEL indicate that the goal of project, conducted under the codename "Operation Socialist," was "to enable better exploitation of Belgacom" and to improve understanding of the provider's infrastructure.

If true this will raise new political questions over one EU member state spying on another EU member state.

This article is featured in:
Internet and Network Security  •  Malware and Hardware Security


Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×