Russia Denies That It Attacked Georgia

The government of Georgia has accused Russia’s military intelligence agency (GRU) of launching a massive cyber-attack on their government and business organisations on 20th February. 

British and US Security Services have also issued official statements formally accusing the GRU and their 'Sandworm' unit for a cyberattack on Georgia, amid fears it could be the start of a wider destabilisation campaign.

Britain and US governments say the GRU was also responsible for carrying out a coordinated cyber-attack on thousands of Georgian websites which ocurred in October 2019  which knocked thousands of Georgian websites offline and disrupted national television broadcasts. This confrontation is considered the largest cyber-attack in Russian electronic history.

"The GRU's reckless and brazen campaign of cyber-attacks against Georgia, a sovereign and independent nation, is totally unacceptable," British Foreign Secretary Dominic Raab said in a statement. 

"The Russian government has a clear choice: continue this aggressive pattern of behaviour against other countries, or become a responsible partner which respects international law."

The British government said its National Cyber Security Centre had decided Moscow was behind the Georgia cyber-attack "with the highest level of probability". 

The US State Department said the incident demonstrated "a continuing pattern of reckless Russian GRU cyber operations against a number of countries".

"The stability of cyberspace depends on the responsible behaviour of nations," the US statement said.

Fake messages usiing the image of controversial ex- President Kikheil Saakasvilli were reported as appearing on sites for the Georgian government, courts, NGOs, news media, and local businesses. In some cases, the web host disruption also took down broadcasting services for some radio and TV stations.

But while the attack and its aftermath was superficial and easily reversible, the mass fake messaging campaign caused domestic political tensionsinside Georgia, primarily due to the use of Saakashvili's photo.

This statement is not the first time the US, UK, and their allies have accused Russia's military intelligence of orchestrating cyber-attacks against foreign governments.

Previously, allies have called out Russia's GRU for cyber-attacks such as:

  • BlackEnergy: December 2015 shut off part of Ukraine's electricity grid, with 230,000 people losing power for between 1 - 6 hours.
  • Industroyer: December 2016 shut off part of Ukraine's electricity grid, also known as CrashOverride. It resulted in a fifth of Kyiv losing power for an hour. It is the first known malware designed specifically to disrupt electricity grids.
  • NotPetya: June 2017 destructive cyber-attack targeting the Ukrainian financial, energy and government sectors and affecting other European and Russian businesses
  • BadRabbit: October 2017 ransomware encrypted hard drives and rendered IT inoperable. This caused disruption including to the Kyiv metro, Odessa airport, Russia's central bank, and two Russian media outlets

The October attack is not the first time Russia's state hackers attacked Georgia. In 2008, Russia fought a brief war with Georgia, which had made a botched attempt to regain control over the breakaway province of South Ossetia. Moscow then recognised the independence of South Ossetia and another breakaway Georgian province, Abkhazia, and set up military bases there.

The Russia's Foreign Ministry has denied  the allegations that its was behind the large-scale cyber-attack on Georgia.

The Cyberwire:        France24:          Telegraph:          Fifth Domain


You Might Also Read: 

Ukraine Battles To Combat Election Hackers:

 

 

« The Cyber Skills Gap Increases
90% Of Breaches Are Caused By Human Error »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Synopsys

Synopsys

Synopsys delivers trusted and comprehensive silicon to systems design solutions, from electronic design automation to silicon IP and system verification and validation.

IoTium

IoTium

Secure Cloud Managed Software Defined IoT Networks. IoTium simplifies establishing and managing secure network infrastructure for Industrial IoT.

Security Onion Solutions

Security Onion Solutions

Security Onion Solutions is the creator and maintainer of Security Onion, a free and open platform for threat hunting, network security monitoring, and log management.

Nuvias Group

Nuvias Group

Nuvias Group is a specialist value-addedd IT distribution company offering a service-led and solution-rich proposition ready for the new world of technology supply.

IdenTrust

IdenTrust

IdenTrust enables organizations to effectively manage the risks associated with identity authentication.

Cyber Security & Cloud Expo

Cyber Security & Cloud Expo

The Cyber Security & Cloud Expo is an international event series in London, Amsterdam and Silicon Valley.

UK Research & Innovation (UKRI)

UK Research & Innovation (UKRI)

UKRI works in partnership with universities, research organisations, businesses, charities, and government to create the best possible environment for research and innovation to flourish.

ThriveDX

ThriveDX

ThriveDX, the world’s premier EdTech provider (formerly HackerU), champions digital transformation training as a means of empowering individuals to thrive in the age of digital disruption.

Immuta

Immuta

Immuta empowers data engineering and operations teams to automate data governance, security, access control & privacy protection.

AnaVation

AnaVation

AnaVation is a trusted partner delivering high-value, cost-effective solutions that solve the most complex technical and analytical problems for our customers.

WhizHack Technologies

WhizHack Technologies

WhizHack's mission is to not only create a pipeline of cyber security products but also to empower people to sustainable innovation in securing digital assets of tomorrow.

Diversified Search Group - Alta Associates

Diversified Search Group - Alta Associates

Diversified Search Group is an industry leader in recruiting diverse, inclusive and transformational leadership for clients.

Driven Technologies

Driven Technologies

Driven is a cloud native service provider transforming the way companies leverage technology to improve business by securing, modernizing, and connecting applications, users, and data.

Pulsar Security

Pulsar Security

Pulsar Security is a team of highly skilled, offensive cybersecurity professionals with the industry's most esteemed credentials and advanced real-world experience.

Adili Group

Adili Group

Adili Group is a leading pan-African corporate advisory firm. We deliver tailored solutions in regulation and compliance, risk management, and improving business efficiency.

Bluecyber Insurance

Bluecyber Insurance

At Bluecyber, we are revolutionizing the cyber insurance market, democratizing access to digital protection for small and medium-sized businesses.