France Accusies Russia-Linked Hacking Group of Targeting Paris Olympics and French Agencies

The French government has accused a hacking group linked to Russian military intelligence of targeting the Paris Olympics, as well as French government agencies and companies. This revelation comes after a report released by France’s cybersecurity agency, ANSSI, which outlined cyber incidents from 2021 through 2024.

According to the report, the hacking group in question is APT28, also known as Fancy Bear, a group that has been linked to Russian military intelligence. The report states that the hacking aimed to collect intelligence, particularly in the context of Russia’s war in Ukraine. France is among Ukraine's most vocal backers, and its government is working to ensure that an eventual US-brokered peace deal doesn’t further embolden Russia and threaten Europe’s security.

The French Foreign Ministry said that the hacking was linked to the Russian military intelligence agency GRU, and targeted French entities including a “sports organization linked to the planning of the 2024 Paris Olympic and Paralympic Games.” The ministry did not identify the organization or detail the impact of the cyber-meddling. Other targets included those involved in aerospace, finance, national government ministries, and local governments.

The report also mentioned that more than a dozen reports from 2023 and 2024 pointed to an intensifying effort from Russia to undermine France through disinformation campaigns, particularly the Paris Olympics. Russian athletes' participation in the Olympics has been curtailed for years because of the Russian invasion of Ukraine and state-sponsored doping.

Responding to the French announcement Monday, Google Threat Intelligence Group chief analyst John Holquist said in a statement that "targeting of the Games by the GRU was heavily anticipated... Even though the games are a potent symbol of international cooperation, they are still the target of malicious intelligence operations.”

APT28 and the GRU have also been linked to global cyber intrusions, including in the 2016 US election, where they were accused of aiding Donald Trump by leaking Democratic Party emails. The French Foreign Ministry named a specific GRU unit, Unit 20728, as being behind the 2021-2024 cyberattacks.

The cybersecurity agency report also mentions unspecified attacks on entities in Ukraine, elsewhere in Europe, and North America. “These destabilizing activities are unacceptable and unworthy of a permanent member of the UN Security Council,” the Foreign Ministry said in a statement. “Alongside its partners, France is determined to use all the means at its disposal to anticipate, discourage and react to Russia’s malicious behavior in cyberspace.”

France's accusations come as tensions between Russia and Ukraine continue to escalate. About 4,700 North Korean soldiers have been killed or wounded fighting for Russia, according to reports.

The situation is also being closely watched by international partners, with concerns about the potential impact on global security. Survivors of a Kashmir attack say gunmen asked if they were Hindus and opened fire, highlighting the ongoing threat posed by extremist groups in the region. Woman on trial charged with murdering ex-husband's relatives with poisonous mushrooms are facing a complex web of charges.

Pakistan and India hint at imminent military action over Kashmir, as tensions between the two nuclear-armed neighbors continue to simmer. The situation is being closely monitored by international partners, who are calling for restraint and diplomatic efforts to resolve the conflict.