The websites of Georgia’s President and two leading TV stations have been temporarily taken offline in an apparent cyberattack by Russian hackers.
The website of Georgian President Salome Zurabishvili was offline on Friday morning, with local media reporting that the site initially displayed a message attributing the attack to a Russian hacking network.
Screenshots purportedly of the site showed the message ‘HACKED BY COZY BEAR SLAVA [glory to] RUSSIA’ on a black background with an image of a green skull.
Cozy Bear is a hacking group that Western intelligence agencies have accused of being linked to the Russian security services. Several high-profile attacks, including on US government agencies have been attributed to the group.
The attack against the President’s website on Friday was at least the fourth target to be hit in Georgia within the last week.
Two major TV channels, Formula and Mtavari Arkhi had their sites breached over the past week.
In the early hours of Friday morning, Formula reported that their website was unusable due to a cyberattack. The head of Formula’s digital department, Mariam Bajelidze, said the attack started at dawn.
‘It was an attack attempt coming from several countries’, she said. ‘Users who entered the website were informed that the site was hacked by a Russian bear and it was written “Slava [glory to] Russia” there’.
Bajelidze said the attack was likely ‘an attempt to hack critical, oppositional websites’.
The previous day, Mtavari Arkhi said they had lost access to a part of their database, with their sit for several hours stating that they had been ‘hacked by NIGGERS’.
On Tuesday, the SovLab, whose stated aim is ‘analysis and exploration of the Soviet totalitarian past’, said they had been targetted by a ‘coordinated attack from Russia’.
‘Over the past several days, the intensity of the attacks has been growing exponentially, especially from Russia’, the organisation stated.
As of Friday afternoon, all four websites appeared to be operating normally.
Andro Gotsiridze, a cybersecurity expert, told Formula the hacks could be a form of ‘Russian aggression’.
‘When a cyber attack is carried out against Georgia in general and critical infrastructure, it is difficult not to think of Russia’, he said, adding little evidence had emerged either way so far.
Previous cyberattacks allegedly coming from Russia have also targeted government agencies and media outlets in Georgia, including large-scale attacks during the August 2008 war.
In October 2019, approximately 15,000 websites in Georgia, including those of major government institutions, broadcasters, online newspapers, and private businesses, were hit by a large-scale cyber attack.
The President’s Office has yet to publicly acknowledge the latest hack, and did not respond to a request for comment.
Read in Georgian on On.ge.
Read in Armenian on CivilNet.
