Czech government officials have accused a group with links to Russia’s GRU military intelligence service of carrying out multiple cyberattacks on the country. The group, known as APT28 or Fancy Bear, targeted Czech institutions using a vulnerability in Microsoft Outlook in 2023. German officials also reported that the same group had launched an attack on members of the Social Democratic Party in January 2023. Czech Interior Minister Vit Rakusan stated that the country had experienced numerous attacks on its infrastructure orchestrated by the Russian Federation and GRU.
According to Czech officials, the attacks on their country’s institutions were part of a long-term perception by Russia that the Czech Republic is an enemy state. Foreign Minister Jan Lipavsky emphasized the importance of publicly identifying the attacker to protect national interests. The Czech Republic, a member of the EU and NATO, has been providing significant military and humanitarian aid to Ukraine since Russia’s invasion began in 2022. The Czech government believes that the GRU was behind the 2014 explosions at an ammunition depot in eastern Czech, which resulted in the deaths of two workers.
Czech police have been investigating the 2014 blasts, but the Russian side has refused to cooperate with the investigation. The incident led to a series of diplomatic expulsions between the Czech Republic and Russia in 2021. The Czech government highlighted the need to point a finger at specific attackers publicly in order to protect national interests. The repeated cyberattacks on Czech institutions were said to be exploiting vulnerabilities in Microsoft Outlook, demonstrating the effectiveness of sophisticated hacking techniques.
German officials confirmed the Czech government’s claims that the cyberattacks targeting Czech institutions were carried out by a group associated with Russia’s GRU intelligence service. The attacks on Czech infrastructure come amid rising tensions between Russia and Western countries, with the Czech Republic seen as an enemy state by Russia. The Czech government has been providing Ukraine with significant military and humanitarian aid since Russia’s full-scale invasion in 2022, further straining relations with Russia.
The Czech government has identified the group responsible for the cyberattacks as APT28, also known as Fancy Bear, known for its sophisticated hacking techniques. Meanwhile, German Minister Nancy Faeser joined Czech Interior Minister Vit Rakusan in condemning the cyberattacks and attributing them to the Russian Federation. The ongoing cyberwarfare targeting Czech institutions represents a clear threat to national security and has prompted both the Czech Republic and Germany to take measures to enhance cybersecurity and protect against future attacks. The incidents underscore the need for increased vigilance and cooperation among European countries to address the growing threat of cyberattacks.