News, Culture & Society

German prosecutors find no proof of US or UK eavesdropping

Prosecutors in Berlin have concluded there is no proof British and American spies hacked German communication lines to eavesdrop on officials. 

After a four-year probe brought about by Edward Snowden’s revelations, prosecutors have concluded there is not enough evidence to open a formal investigation.  

Prosecutors’ spokeswoman Frauke Koehler said Thursday that, among other things, her office had considered material collected by a parliamentary panel, German intelligence reports and documents leaked from former NSA contractor Snowden.

Edward Snowden, an American computer professional, former CIA employee, and government contractor who leaked classified information from the US National Security Agency (NSA) in 2013

She said: ‘The documents did not provide any information on concrete interception measures that were carried out, and with this background there is no room for an investigation by prosecutors.’

The examination was ordered after Snowden in 2013 revealed details of secret US eavesdropping programs.

On the same day, top German intelligence officials on Thursday urged lawmakers to give them greater legal authority to ‘hack back’ in the event of cyber attacks from foreign powers.

Hans-Georg Maassen, head of the BfV domestic intelligence agency, told the parliamentary oversight committee it should be possible to destroy data stolen from German servers and moved to foreign servers to prevent it from being misused.

He said it would also make sense to ‘infect’ foreign servers with software that would enable greater surveillance of any operations directed against German cyber targets, or to extract data, much as human agents are recruited for counter-espionage.

Massen told the committee in its first public hearing: ‘In the real world, it would be like turning a foreign intelligence agent and getting them to work for us.

‘Something like this should be possible in the cyber world too.

‘These are “hack back” instruments, but they are below the threshold of destroying or incapacitating a foreign server.’

German officials have blamed APT28, a Russian hacker group said linked to Moscow, for the May 2015 hack of the German lower house of parliament the Bundestag and other cyber attacks aimed at political groups, individuals or institutions.

They issued repeated warnings about the possibility that Moscow could seek to influence or disrupt the September 24 German election, although officials have since said they did not see any major push by Russia to do so.

Maassen said it was possible Russia decided the political cost was too great after the backlash that ensued in the United States after a similar effort there.

Russia denies seeking to influence any foreign elections.

Top German intelligence officials on Thursday urged lawmakers to give them greater legal authority to 'hack back' in the event of cyber attacks from foreign powers.

Top German intelligence officials on Thursday urged lawmakers to give them greater legal authority to ‘hack back’ in the event of cyber attacks from foreign powers.

Germany’s BND foreign intelligence agency already has the expertise, but not the legal authority, to destroy foreign servers, its chief Bruno Kahl told the committee.

Once the source of attack had been carefully investigated and identified, it could make sense to ‘shut down the source of such an attack and not have to retreat and give the job of going back in and taking care of business,’ Kahl said.

In the end, however, such decisions had to be made by politicians, Kahl said.

Christof Gramm, head of Germany’s MAD military counter-espionage agency, said there were questions of domestic and international law to address before empowering the agencies to take such actions.

Talking to the committee towards the end of the three-hour session he said: ‘This all has to be worked out. There are international boundaries. 

‘We’re not just talking about national law.’ 

He said if such powers were granted, it would be up to the military’s cyber command to carry out such actions, not the MAD.

Maassen said authorities needed access to streaming data from foreign servers – for instance of videos showing beheadings – to track radicalisation of possible Islamist attackers.

He also called for broader powers to track communications between Germany and Raqqa, the Syrian city still under Islamic State control, noting that current law only allowed the tracking of individual communications, not broader flows.