Italy suspects Russia behind hacking attack on foreign ministry

Italian officials suspect Russia was behind a sustained hacking attack against the Italian foreign ministry last year that compromised email communications and lasted for many months before it was detected, according to people familiar with the matter.

An Italian government official confirmed that the attack took place last spring and lasted for more than four months but did not infiltrate an encrypted system used for classified communications.

Paolo Gentiloni, the Italian prime minister who was serving as foreign minister at the time, was not affected by the hack, according to the official, who said Gentiloni avoided using email while he was foreign minister.

The foreign ministry’s “field offices”, including embassies and staff members who report back to Rome about meetings with foreign officials, were affected by the malware attack. But the government official said sensitive information had not been compromised because it would also have been encrypted.

The official did not confirm that Moscow was behind the attack. But two other people with knowledge of the attack said the Russian state was believed to have been behind it. The hacking is now the subject of an inquiry by the chief prosecutor in Rome.

“There were no attacks on the encrypted level. So the information – delicate, sensitive information – that is usually shared in this net, which is restricted by code, has never been attacked or part of this attack,” the government official said.

After the attack was discovered, the foreign ministry modified its online “architecture” and introduced new instruments to enhance internal security. The official declined to comment on how the intrusion was detected.

The revelation comes amid heightened concerns that Russia has targeted Nato members, including the US, France, Germany, the Netherlands and Bulgaria, as part of a cyber campaign that seeks to weaken the governments of those countries and disrupt critical infrastructure.

In the US, intelligence agencies have blamed Russian government-sponsored hacking groups for breaching the Democratic National Committee and officials in Hillary Clinton’s campaign during the 2016 presidential elections.

If Russia did attack Italy, it was targeting a country generally considered less hostile to it than other EU countries such as Germany or the UK. While Italy has supported sanctions against Russia that were imposed following the annexation of Crimea, the government under former prime minister Matteo Renzi strongly opposed a proposal to levy new sanctions against Moscow for its role in the Syrian conflict.

News of the hacking could stoke concerns that Russia may seek to influence the next Italian election, which could be called as early as June.

The government’s main opposition, the anti-establishment Five Star Movement, has adopted pro-Russian positions on topics ranging from Vladimir Putin’s military intervention in Syria, to his invasion of Ukraine, to a call for Italy to lift sanctions against Russia and reassess its commitment to Nato.