NewsRussia's cyber siege: Georgia's critical networks compromised

Russia's cyber siege: Georgia's critical networks compromised

For several years, Russia has conducted a widespread espionage and hacking campaign targeting the government and large enterprises in Georgia, Bloomberg reported on Monday. It is possible that the information gathered enabled the sabotage of the country's critical infrastructure.

Russian President Vladimir Putin
Russian President Vladimir Putin
Images source: © East News | ALEXANDER ZEMLIANICHENKO
Malwina Gadawa

21 October 2024 15:22

Documents obtained by Bloomberg News indicate that the Russians infiltrated the Georgian Ministry of Foreign Affairs, the Ministry of Finance, the central bank, and key energy and telecommunications providers. According to the report, Russian intelligence gained access to Georgian energy companies, oil terminals, media platforms, and government agencies between 2017 and 2020.

Russia infiltrates Georgia

Russia has conducted similar operations "recently," according to Bloomberg sources. However, no further details were provided.

Natia Seskuria from the Georgian Regional Institute for Security Studies (RISS) stated that Russia has been infiltrating Georgia for many years. She added that this is particularly concerning and significant in light of the upcoming elections. On October 26, Georgians will choose a new parliament.

Western partners have informed Georgian authorities about some of the Russian hacking attacks. It is unclear if the authorities in Tbilisi have taken any action on this matter, European officials told Bloomberg.

Giorgi Shaismelashvili from the organization Civic IDEA in Tbilisi assessed that "Georgia still does not fully realize these threats." In his opinion, Russia may be able to conduct cyberattacks on critical infrastructure if the parliamentary elections lead to a change of power that Moscow does not accept.

In an article titled "How Russian Spies Hacked All of Georgia," Bloomberg described instances of hackers targeting Georgian entities. For example, hackers associated with the Russian Federal Security Service (FSB) broke into high-ranking officials of the Georgian Ministry of Foreign Affairs email accounts. They gained access to information from Georgian embassies in various countries.

Hackers broke into the ministry network

The operation targeting the Ministry of Foreign Affairs was reportedly carried out by the hacker group Turla, which, according to the US Department of State, is associated with the FSB. From November to December 2020 alone, hackers broke into the ministry's network and stole data 114 times.

From the end of 2019 to the beginning of 2020, Russian hackers also read emails of employees of the energy distributor Telasi, for instance, and watched them through cameras while they worked. Hackers also attacked another state-owned company in the energy sector, gaining the ability to disable electrical substations and power in some Georgian regions, according to documents cited by the report. One of these documents suggests that the GRU, the Russian military intelligence, was behind the attacks.

© Daily Wrap
·

Downloading, reproduction, storage, or any other use of content available on this website—regardless of its nature and form of expression (in particular, but not limited to verbal, verbal-musical, musical, audiovisual, audio, textual, graphic, and the data and information contained therein, databases and the data contained therein) and its form (e.g., literary, journalistic, scientific, cartographic, computer programs, visual arts, photographic)—requires prior and explicit consent from Wirtualna Polska Media Spółka Akcyjna, headquartered in Warsaw, the owner of this website, regardless of the method of exploration and the technique used (manual or automated, including the use of machine learning or artificial intelligence programs). The above restriction does not apply solely to facilitate their search by internet search engines and uses within contractual relations or permitted use as specified by applicable law.Detailed information regarding this notice can be found  here.