Increasing incidences of data theft, espionage, and sabotage pose a growing threat to German businesses.

Businesses in Germany are facing a significant escalation in instances of data theft, espionage, and sabotage. These malicious activities have resulted in record-breaking damages, surpassing the 2021 threshold of 223.5 billion euros with an estimated 266 billion euros in 2023.

Research reveals that companies themselves often attribute these attacks to their activities. However, foreign intelligence agencies have been singled out as the putting hand behind 20% of these attacks, a substantial increase compared to 2023's 7%. China has emerged as the leading origin of these attacks, with 45% of companies pinpointing at least one incident to China. Russia follows closely with 39%. Interestingly, Eastern European countries outside the EU and Russia witnessed a surge in attacks, accounting for 32% of the total, surpassing the 2023 figure.

Factors Contributing to the Escalation

1. Advanced State-Sponsored Attacks:
2. Russia's GRU military intelligence agency and China's cyber attack capabilities represent significant threats, targeting critical infrastructure and intellectual property for espionage, sabotage, and reputation harm.
3. Hybrid Threats:
4. Hybrid attacks, combining technology and psychological tactics, have become increasingly common. These attacks aim to not only steal information but also sabotage infrastructure.
5. Increased Cybercrime Activities:
6. The growth of threat actors, including hacktivist groups and Cyber Crime-as-a-Service (CaaS), exacerbates the scale and complexity of threats. Unsophisticated individuals can orchestrate impactful attacks with advanced AI technology.
7. Geopolitical Tensions:
8. The ongoing Russia-Ukraine conflict has intensified cyberattacks from GRU actors. Western intelligence officials have accused GRU actors of numerous cyber and other attacks since the February 2022 invasion of Ukraine.
9. Economic and Political Sanctions:
10. In response to the Ukraine conflict, the EU and its allies imposed extensive sanctions on Russia, which have in turn escalated state-sponsored cyber espionage and sabotage efforts.

Primary Countries behind these Attacks

1. Russia:
2. The GRU Unit 29155, also known as Cadet Blizzard or Ember Bear, poses a significant threat. This group has been responsible for cyberattacks and reconnaissance activities against NATO and EU countries, including Germany.
3. China:
4. China has become a dominant cyber power, with groups like APT10 actively targeting Managed Service Providers (MSPs) to steal sensitive data and intellectual property. China's resources and technical capabilities drive continuous investments in hacker training and cyber warfare.

The complex and interconnected nature of these cybersecurity threats underscores the importance of protecting businesses in Germany.