Cyberattacks during the Russo-Georgian war
On 5 August 2008, three days before Georgia launched its invasion of South Ossetia, the websites for OSInform News Agency and OSRadio were hacked. The OSinform website at osinform.ru kept its header and logo, but its content was replaced by a feed to the Alania TV website content. Alania TV, a Georgian government supported television station aimed at audiences in South Ossetia, denied any involvement in the hacking of the websites. Dmitry Medoyev, at the time the South Ossetian envoy to Moscow, claimed that Georgia was attempting to cover up information on events which occurred in the lead up to the war.
One such cyber attack caused the Parliament of Georgia and Georgian Ministry of Foreign Affairs websites to be replaced by images comparing Georgian president Mikheil Saakashvili to Adolf Hitler. Other attacks involved denials of service to numerous Georgian and Azerbaijani websites, such as when Russian hackers allegedly disabled the servers of the Azerbaijani Day.Az news agency. The governments of Estonia, Ukraine, and Poland offered technical assistance and mirrored web pages for Georgian websites to use during the attacks.
While Day.az claimed that Russian intelligence services conducted the denial-of-service attacks (DDoS) on Georgian informational and governmental websites through a proxy in this period, the Russian government denied the allegations, stating that it was possible that individuals in Russia or elsewhere had taken it upon themselves to start the attacks. Others[who?] asserted that the St. Petersburg-based criminal gang known as the Russian Business Network (RBN) was behind many of these cyber attacks on Georgian and Azerbaijani sites, as it was for the attacks on Estonia in 2007.
In 2008, Gadi Evron, the former chief of Israel's Computer Emergency Response Team, believed the attacks on Georgian internet infrastructure resembled a cyber-riot, rather than cyber-warfare. Security researchers from Greylogic concluded that Russia's GRU and the FSB were likely to have played a key role in co-coordinating and organizing the attacks.
Both these viewpoints are valid according to research by John Bumgarner a former intelligence officer and member of the United States Cyber Consequences Unit (US-CCU). Bumgarner’s research concluded that the first-wave of cyberattacks against Georgian targets were synchronized with Russian military operations and that a second wave was conducted by Russian sympathizers.
- Keizer, Gregg (12 August 2008). "Cyber attacks knock out Georgia's Internet presence". MIS-Asia. Retrieved 26 January 2009.
- "S.Ossetian News Sites Hacked". Tbilisi: Civil Georgia. 5 August 2008. Retrieved 26 January 2009.
- Wentworth, Travis (12 August 2008). "You’ve Got Malice: Russian nationalists waged a cyber war against Georgia. Fighting back is virtually impossible.". Newsweek. Retrieved 26 January 2009.
- Markoff, John (13 August 2008). "Before the Gunfire, Cyberattacks". The New York Times. Retrieved 26 January 2009.
- Today.az (11 August 2008). Russian intelligence services undertook large scale attack against Day.Az server
- Georgia: Regional Reporters
- Estonia, Google Help 'Cyberlocked' Georgia (Updated)
- Estonia, Poland Help Georgia Fight Cyber Attacks
- Georgia States Computers Hit By Cyberattack
- The hunt for Russia's web crims - Security - Technology - theage.com.au
- Waterman, Shaun (18 August 2008). "Analysis: Russia-Georgia cyberwar doubted". Middle East Times. Retrieved 2009-03-24.[dead link]
- Leyden, John (23 March 2009). "Russian spy agencies linked to Georgian cyber-attacks". The Register. Retrieved 24 March 2009.
- Brian Prince (18 August 2009). "Cyber-attacks on Georgia Show Need for International Cooperation, Report States". eWeek. Retrieved 1 November 2011.
- Mark Rutherford (18 August 2009). "Report: Russian mob aided cyberattacks on Georgia". cNet. Retrieved 1 November 2011.