19th Mar 2018


Russia’s cyber war: past, present, and future

  • Paris: Macron said Russian hackers are targeting his campaign (Photo: Lisa Kline1)

News reports about Russian hackers infiltrating one country or another are now a daily occurrence.

Some of these attacks are more significant than others, such as the Russian assault on the American election of 2016. Now France and Germany are voicing concerns that their elections may be the next target.

Thank you for reading EUobserver!

Subscribe now for a 30 day free trial.

  1. €150 per year
  2. or €15 per month
  3. Cancel anytime

EUobserver is an independent, not-for-profit news organization that publishes daily news reports, analysis, and investigations from Brussels and the EU member states. We are an indispensable news source for anyone who wants to know what is going on in the EU.

We are mainly funded by advertising and subscription revenues. As advertising revenues are falling fast, we depend on subscription revenues to support our journalism.

For group, corporate or student subscriptions, please contact us. See also our full Terms of Use.

If you already have an account click here to login.

  • Georgia: Massive cyber attack on same day Russian tanks rolled across the border (Photo: Thomas Depenbusch)

Other serious incidents involve cyber attacks on critical infrastructure, such as the power grid in western Ukraine.

In this context, it is instructive to revisit the beginnings of Russia’s cyber warfare strategy.

The first case of a massive Russian cyber attack occurred in Estonia in 2007. During a politicised dispute over a historical legacy issue between Russia and its former colony, Estonian government agencies and businesses came under massive DDoS (distributed denial of service) attacks that crippled dozens of websites.

As it turned out, that cyber assault against Estonia was only a dress rehearsal. An even more spectacular instance of cyber warfare occurred during the Russo-Georgian War in August 2008.

On 7 August 2008, while Russian army units were crossing the border into Georgia, a cyber attack originating from Russia was launched against Georgian government and media websites.

According to the Report of the Independent International Fact-Finding Mission on the Conflict in Georgia, on the same day several Georgian servers and swathes Internet traffic were seized and placed under external control.

The Russian cyber offensive continued throughout the war, which ended with a ceasefire on 12 August. The Russians had apparently tested their capabilities shortly before the invasion, on 20 July, when they shut down the website of the president of Georgia for 24 hours.

During the war massive Russian cyber attacks closed virtually all Georgian government websites. Other targets of the attacks included media, as well as Georgian financial, business and other organisations.

The purpose was to support the Russian military operation, disrupting the response to its military assault by the Georgian state and society, and making it more difficult for information about what was happening in the warzone to get out to the outside world.

According to a report by the US Cyber Consequences Unit, “the primary objective of the cyber campaign was to support the Russian invasion of Georgia, and the cyber attacks fit neatly into the invasion plan”.

The attacks served their purpose, since they “significantly impeded the ability of the Georgian government to deal with the Russian invasion by interfering with communications between the government and the public, stopping many payments and financial transactions, and causing confusion about what was happening”.

This case of cyber warfare gained historical significance as it was the first instance of a cyber offensive used as an integral part of a conventional interstate war.

Next level

Russia’s cyber war in August 2008 thus became a landmark, taking strategic use of cyber weapons to the next level.

We now have to expect massive use of cyber warfare in any future attacks by Russia against another state. That is why recent cyber attacks against Ukraine are a worrying signal.

On 29 December 2016, Ukraine president Petro Poroshenko said that during November-December 2016 Ukrainian state institutions were attacked by hackers about 6,500 times. The targets included ministries of defence and finance, as well the state treasury and the capital city’s power grid.

According to the Ukrainian president, the attacks were staged by Russian security services. The basic operational logic of these attacks conforms to what Russians did during the cyber campaign against Georgia in 2008 - this is the scary part.

Right now the military conflict in Ukraine has a form of slow positional warfare in the Donbass region. And yet attacks such as those conducted against Ukraine in November and December 2016 do not make much sense unless their timing is critical.

The impact of such attacks is only temporary, without lasting damage for the targeted country. They have an effect for a limited period of time, and therefore make sense only when launched during a crucial period such as prior to a military offensive - just as it happened in Georgia in August 2008.

Since these latest attacks against Ukraine have no immediate strategic purpose, it is logical to conclude that they constitute a test of Russian cyber capabilities and Ukrainian vulnerabilities in preparation for a possible future wider military attack against Ukraine.

Cyber warfare will probably figure prominently in most future interstate wars, and definitely in those between technologically advanced countries.

Political aggression

Support of military offensives is not the only use Russians have for their cyber operations, however. They are also employing them as an integral part of their information warfare against Western states.

The last American presidential election was not an isolated case, as there are indications that elections in France and Germany, to be held in 2017, may also be targeted by Russians.

Jean-Yves Le Drian, the French defence minister, and Guillaume Poupard, head of the Network and Information Security Agency (ANSSI), have voiced concerns about potential Russian electoral meddling. So has the DGSE - the primary French intelligence agency.

The party of the French presidential candidate Emmanuel Macron has warned that his campaign is being targeted by Russians with both cyber attacks and fake news.

The pro-European Macron is a problem for the Kremlin, since he has emerged as a leading candidate, likely to defeat both Francois Fillon and Le Pen – the two candidates favoured by Moscow.

The heads of the German intelligence agencies have also voiced worries about Russian cyber activities directed against Germany and its election. The chancellor, Angela Merkel, herself raised the same concern.

As Moscow employs all available means to achieve its geostrategic objectives, the cyber domain has become one of the primary theatres for Russian military and political aggression.

Tested in Estonia and tried in Georgia, Russia's cyber arsenal is now pointed not just at Ukraine but at the very heart of Europe itself.

David Batashvili is a freelance writer who worked for the National Security Council of Georgia in 2008-2013

Hohe Cyber-Bedrohung für Frankreichs Wahlen

Frankreichs Präsident Francois Hollande kündigt an, alle notwendigen Massnahmen zu treffen, um Cyberattacken vor den Präsidentschaftswahlen im April und Mai zu verhindern. Die politischen Parteien sind jedoch weiterhin anfällig.

La présidentielle française sous cyber-alerte maximale

Le président francais Francois Hollande a mobilisé "tous les moyens nécessaires" pour contrer d'éventuelle cyber-attaques avant l'election présidentielle d'avril et mai. Mais les partis politiques restent vulnérables.

Column / Brussels Bytes

EU e-privacy proposal risks breaking 'Internet of Things'

EU policymakers need to clarify that the e-privacy should not apply to most Internet of Things devices. The current proposal require explicit user consent in all cases - which is not practical.

Stakeholders' Highlights

  1. Counter BalanceConmtroversial Turkish Azerbaijani Gas Pipeline Gets Major EU Loan
  2. World VisionSyria’s Children ‘At Risk of Never Fully Recovering', New Study Finds
  3. Macedonian Human Rights MovementMeets with US Congress Member to Denounce Anti-Macedonian Name Negotiations
  4. Martens CentreEuropean Defence Union: Time to Aim High?
  5. UNESDAWatch UNESDA’s President Toast Its 60th Anniversary Year
  6. AJC Transatlantic InstituteAJC Condemns MEP Ana Gomes’s Anti-Semitic Remark, Calls for Disciplinary Action
  7. EPSUEU Commissioners Deny 9.8 Million Workers Legal Minimum Standards on Information Rights
  8. ACCAAppropriate Risk Management is Crucial for Effective Strategic Leadership
  9. EPSUWill the Circular Economy be an Economy With no Workers?
  10. European Jewish CongressThe 2018 European Medal of Tolerance Goes to Prince Albert II of Monaco
  11. FiscalNoteGlobal Policy Trends: What to Watch in 2018
  12. Human Rights and Democracy NetworkPromoting Human Rights and Democracy in the Next Eu Multiannual Financial Framework

Latest News

  1. Selmayr case symptomatic, warns EU novel author
  2. Russia poisoning is not EU concern, Germany says
  3. Kiev wants EU sanctions on former German chancellor
  4. North Korea: time to put the 'E' in engagement
  5. Brexit and trade will top This WEEK
  6. Dutch MPs in plan to shut EU website on Russian propaganda
  7. Four years on – but we will not forget illegally-occupied Crimea
  8. Evacuated women from Libya arrive newly-pregnant

Stakeholders' Highlights

  1. Mission of China to the EUDigital Cooperation a Priority for China-EU Relations
  2. ECTACompetition must prevail in the quest for telecoms investment
  3. European Friends of ArmeniaTaking Stock of 30 Years of EU Policy on the Nagorno-Karabakh Conflict: How Can the EU Contribute to Peace?
  4. ILGA EuropeCongratulations Finland!
  5. EUobserverNow Hiring! Sales Associate With 2+ Years Experience
  6. EUobserverNow Hiring! Finance Officer With Accounting Degree or Experience
  7. UNICEFCyclone Season Looms Over 720,000 Rohingya Children in Myanmar & Bangladesh
  8. European Gaming & Betting AssociationEU Court: EU Commission Correct to Issue Guidelines for Online Gambling Services
  9. Mission of China to the EUChina Hopes for More Exchanges With Nordic, Baltic Countries
  10. Macedonian Human Rights MovementCondemns Facebook for Actively Promoting Anti-Macedonian Racism
  11. Nordic Council of MinistersGlobal Seed Vault: Gene Banks Gather to Celebrate 1 Million Seed Collections
  12. CECEIndustry Stakeholders Are Ready to Take the Lead in Digital Construction

Stakeholders' Highlights

  1. ILGA EuropeAnkara Ban on LGBTI Events Continues as Turkish Courts Reject NGO Appeals
  2. Aid & Trade LondonJoin Thousands of Stakeholders of the Global Aid Industry at Aid & Trade London
  3. Macedonian Human Rights MovementEuropean Free Alliance Joins MHRMI to End the Anti-Macedonian Name Negotiations
  4. Mission of China to the EUChina-EU Tourism Year to Promote Business and Mutual Ties
  5. European Jewish CongressAt “An End to Antisemitism!” Conference, Dr. Kantor Calls for Ambitious Solutions
  6. UNESDAA Year Ago UNESDA Members Pledged to Reduce Added Sugars in Soft Drinks by 10%
  7. International Partnership for Human RightsUzbekistan: Investigate Torture of Journalist
  8. UNICEFExecutive Director's Committment to Tackling Sexual Exploitation and Abuse of Children
  9. Nordic Council of MinistersState of the Nordic Region 2018: Facts, Figures and Rankings of the 74 Regions
  10. Mission of China to the EUDigital Economy Shaping China's Future, Over 30% of GDP
  11. Macedonian Human Rights MovementSuing the Governments of Macedonia and Greece for Changing Macedonia's Name
  12. Swedish EnterprisesHarnessing Globalization- at What Cost? Keynote Speaker Commissioner Malmström