The chief of the German military’s Cyber and Information Domain Service (CIR) recently revealed that even he falls prey to common phishing emails, which falsely claim that antivirus protection subscriptions are expiring. Vice-Admiral Thomas Daum disclosed that he swiftly deleted three such obvious phishing attempts from his personal email account during his visit to Ottawa.
Daum emphasized the ongoing challenge faced by Germany and allied nations like Canada due to escalating cyber threats from countries such as Russia, China, Iran, and North Korea. He highlighted the growing trend of cyberattacks, emphasizing that while not in a state of war, there is a constant state of alertness in the cyber realm.
During his visit to Ottawa for discussions with Canadian military cyber command and senior defense officials, Daum stressed the importance of cybersecurity awareness. He pointed out a specific incident in Germany where state-sponsored Russian hackers targeted high-profile individuals in the defense and security sector using a phishing campaign on the Signal messenger app.
As both Germany and Canada focus on strengthening their defense capabilities, Daum indicated that Germany has experienced a surge in supply chain attacks targeting its defense industry and associated companies. He cited a ransomware attack on Rheinmetall, a prominent defense contractor, which resulted in significant financial losses and operational disruptions.
Daum cautioned industries in both Germany and Canada to enhance their cybersecurity defenses to prevent interruptions in critical services. He referenced instances of espionage activities targeting defense contractors and logistics providers, urging proactive measures to safeguard against cyber threats.
Moreover, Daum highlighted the importance of public awareness in cybersecurity, emphasizing that individuals play a significant role in preventing cyber incidents. He underscored the need for vigilance, stating that the primary risk to cybersecurity often lies with users themselves.
In Canada, similar incidents have been reported, with defense contractors like Black & McDonald and Brookfield Global Relocation Services falling victim to cyberattacks compromising sensitive information. Daum emphasized the collective responsibility of individuals in maintaining robust cyber defenses, as even personal devices can be targeted and exploited by cyber adversaries.