How Macron’s team thwarted the hackers with one simple trick
Akilnathan Logeswaran, Consultant, Deloitte Digital
Multiple sources reported that the campaign of the new French President, Emmanuel Macron, was attacked by Russian hackers.
According to a report from the Tokyo-based cyber-security firm, Trend Micro, a Russian intelligence unit targeted Macron’s campaign from March to April 2017, sending e-mails designed to lure mid-level campaign managers into handing over their passwords.
Trend Micro even believes that it’s the very same Russian group, known by a number of names including ‘Apt28’, ‘Pawn Storm’ & ‘Fancy Bear’, who hacked the emails from the Democratic National Committee in the 2016 US presidential election.
While it’s not confirmed that the attacks can be attributed to these Russian groups or other groups that mimic the same behavior, it seems evident that there could be Russian interests at play.
The former leader of the Front National, Marine Le Pen has a track record of ties to Russia and admiration for its leadership. In 2017, she met the Russian leadership. In 2014, her campaign received a $10–12 million loan from a Russian bank. In 2011, Le Pen even told the Russian publication Kommersant: “I won’t hide that, in a certain sense, I admire Vladimir Putin”.
Against this backdrop, the head of Macron’s digital team, Mounir Mahjoubi, recently explained how the attacks on Hillary Clinton’s campaign inspired them to not only be more vigilant in defending their cybersecurity, but also to launch “counter attacks” against the hackers.
The Macron campaign was frequently targeted by phishing attacks which would send emails with links to copies of credible-looking log-in screens with slight changes in the web addresses, e.g. using dots rather than hyphens, etc. Once a user would sign in, the hackers would have access to all of the user’s emails.
They frequently — on a weekly basis — informed the team about the recent attacks, but here comes the real trick. They did not try to not open these false URLs, they did open them — more often than the hackers expected.
You can flood these addresses with multiple passwords and log-ins, true ones, false ones, so the people behind them use up a lot of time trying to figure them out.
With so much information, the hackers must have had a hard time verifying what was true, and obviously wasted numerous hours trying to sort all of the ‘mis’information. Eventually this probably also explains the unorganized nature of the stolen campaign emails that were eventually uploaded onto the anonymous site 4chan, which didn’t provide any damaging insights.
After all, President Macron’s team used a tactic that George Washington and Mao Zedong both agreed upon: “Attack is the best form of defense.”
Originally published at www.weforum.org.