Russia Denies That It Attacked Georgia

The government of Georgia has accused Russia’s military intelligence agency (GRU) of launching a massive cyber-attack on their government and business organisations on 20th February. 

British and US Security Services have also issued official statements formally accusing the GRU and their 'Sandworm' unit for a cyberattack on Georgia, amid fears it could be the start of a wider destabilisation campaign.

Britain and US governments say the GRU was also responsible for carrying out a coordinated cyber-attack on thousands of Georgian websites which ocurred in October 2019  which knocked thousands of Georgian websites offline and disrupted national television broadcasts. This confrontation is considered the largest cyber-attack in Russian electronic history.

"The GRU's reckless and brazen campaign of cyber-attacks against Georgia, a sovereign and independent nation, is totally unacceptable," British Foreign Secretary Dominic Raab said in a statement. 

"The Russian government has a clear choice: continue this aggressive pattern of behaviour against other countries, or become a responsible partner which respects international law."

The British government said its National Cyber Security Centre had decided Moscow was behind the Georgia cyber-attack "with the highest level of probability". 

The US State Department said the incident demonstrated "a continuing pattern of reckless Russian GRU cyber operations against a number of countries".

"The stability of cyberspace depends on the responsible behaviour of nations," the US statement said.

Fake messages usiing the image of controversial ex- President Kikheil Saakasvilli were reported as appearing on sites for the Georgian government, courts, NGOs, news media, and local businesses. In some cases, the web host disruption also took down broadcasting services for some radio and TV stations.

But while the attack and its aftermath was superficial and easily reversible, the mass fake messaging campaign caused domestic political tensionsinside Georgia, primarily due to the use of Saakashvili's photo.

This statement is not the first time the US, UK, and their allies have accused Russia's military intelligence of orchestrating cyber-attacks against foreign governments.

Previously, allies have called out Russia's GRU for cyber-attacks such as:

  • BlackEnergy: December 2015 shut off part of Ukraine's electricity grid, with 230,000 people losing power for between 1 - 6 hours.
  • Industroyer: December 2016 shut off part of Ukraine's electricity grid, also known as CrashOverride. It resulted in a fifth of Kyiv losing power for an hour. It is the first known malware designed specifically to disrupt electricity grids.
  • NotPetya: June 2017 destructive cyber-attack targeting the Ukrainian financial, energy and government sectors and affecting other European and Russian businesses
  • BadRabbit: October 2017 ransomware encrypted hard drives and rendered IT inoperable. This caused disruption including to the Kyiv metro, Odessa airport, Russia's central bank, and two Russian media outlets

The October attack is not the first time Russia's state hackers attacked Georgia. In 2008, Russia fought a brief war with Georgia, which had made a botched attempt to regain control over the breakaway province of South Ossetia. Moscow then recognised the independence of South Ossetia and another breakaway Georgian province, Abkhazia, and set up military bases there.

The Russia's Foreign Ministry has denied  the allegations that its was behind the large-scale cyber-attack on Georgia.

The Cyberwire:        France24:          Telegraph:          Fifth Domain


You Might Also Read: 

Ukraine Battles To Combat Election Hackers:

 

 

« The Cyber Skills Gap Increases
90% Of Breaches Are Caused By Human Error »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Oxygen Forensics

Oxygen Forensics

Oxygen Forensics offer the most advanced forensic data examination tools for mobile devices and cloud services.

RedTeam Security

RedTeam Security

RedTeam Security is a provider of Penetration Testing, Social Engineering, Red Teaming and Red Team Training services.

MIIS Cyber Initiative

MIIS Cyber Initiative

The Cyber Initiative's mission is to assess the impact of the information age on security, peace and communications.

Clearwater Security & Compliance

Clearwater Security & Compliance

Clearwater Compliance specialize in Privacy, Security, Compliance and Risk Management Solutions for Health Care, Law Firms and other businesses.

National Authority Against Electronic Attacks (NAAEA) - Greece

National Authority Against Electronic Attacks (NAAEA) - Greece

The National Authority Against Electronic Attacks (NAAEA) is the national computer emergency response team of Greece.

Potomac Institute for Policy Studies

Potomac Institute for Policy Studies

Potomac Institute undertakes research on key science, technology, and national security issues facing society, Study areas include cybersecurity.

Phirelight Security Solutions

Phirelight Security Solutions

Phirelight empowers an enterprise to easily understand how their networks behave, while at the same time assessing and managing cyber threats in real time.

Nexis

Nexis

Nexis GmbH is a German IT security company specializing in IAM, access control, and risk management.

ClearBlade

ClearBlade

ClearBlade is the Edge Computing software company enabling enterprises to rapidly engineer and run secure, real-time, scalable IoT applications.

iProov

iProov

iProov delivers authentication and verification simply and securely, based on a genuine one-time biometric.

Rentalworks

Rentalworks

Rentalworks is a leading provider of Internet-of-Things (IoT) Asset Lifecycle Management Services including secure data erasure and disposal.

Stratia Cyber

Stratia Cyber

Stratia Cyber is an independent, technology agnostic company providing high quality, pragmatic cyber security consultancy and expertise.

Tech Vedika

Tech Vedika

Tech Vedika has access to technical guidance, training and resources from AWS to successfully undertake solution architecture, application development, application migration, and managed services.

Complete Cyber

Complete Cyber

Complete Cyber provide professional cybersecurity services and products to help secure your infrastructure, systems and data.

ITUS Secure Technologies

ITUS Secure Technologies

ITUS offer fully outsourced cybersecurity solutions working with leading security vendors, providing next-gen solutions.

InstaSecure

InstaSecure

InstaSecure’s Preventive Cloud Controls accelerate alert remediation and strengthen cloud configurations. Set your controls once and prevent current and future risks.