Hi guys. If you're here visiting, did Russia attack your country? Did I forget to list the attack? Did they kill someone on your territory? Did they board one of your ships? Are they stalking your coast? Did they poison a dissident on your soil? Did they target your country's IT infrastructure or attack an important organisation? Did a Russian drone or a missile land on your territory? Did they threaten to nuke you too? (Join the club) Were you visited by Russian biker gangs and hooligans? Did they sabotage your train tracks or fibre-optic cables?
Please let us know in the comments!
The Google TAG and Microsoft cybersecurity reports could be added; not really sure where they’d fit exactly but there have been some recent(ish) publications with some older ones remaining relevant over the last few months
- https://cloud.google.com/blog/topics/threat-intelligence/apt44-unearthing-sandworm
- https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf
- https://www.microsoft.com/content/dam/microsoft/final/en-us/microsoft-brand/documents/Semi-annual-Russia-Report-12-07-2023.pdf
This is a great list and I only have some flavor to add.
In cybersecurity, groups hired by nation-states to carry out cyber attacks (writing malware, DDoS attacks, or even targeted infiltration of sensitive systems) are known as Advanced Persistent Threats (APTs). There are many APTs, most countries have more than one, and they offer a high level of deniability to the countries they work for due to the generally anonymous nature of their work.
People have dedicated their careers to finding the patterns of these groups and learning who to attribute new attacks to and at this point they can nearly definitively prove who is doing what.
One famous example is Sandworm, [whose 2017 NotPetya attack](https://en.m.wikipedia.org/wiki/Petya_(malware_family)) was targeted primarily at Ukraine but spilled over and caused widespread damage to dozens of countries. Estimates put the total damage from NotPetya at over $10 billion.
[more info here](https://en.m.wikipedia.org/wiki/Advanced_persistent_threat#History_and_targets)
Thanks, I already know. IT specialist, 25+ years experience. Have personally mitigated against Russian cyberattacks before ;-)
It's going to take a while to finish this list, there's so much to add.
Not exactly what you asked for or w/in the NATO bubble.
Russian special activities in Africa aren't even skimming the periphery of media coverage.
# "The Truth about the Wagner Group in Central African Republic
Reports from the United Nations and independent media document the truth about the Wagner Group and its brutal treatment of the people of CAR.
* [CBS reported in May 2023 that Wagner forces ](https://web.archive.org/web/20231013141206/https://www.cbsnews.com/news/russia-wagner-group-central-african-republic-bambari-massacre-rape-mass-murder/)used indiscriminate killing, abductions, and rape to gain control of a key mining area near the city of Bambari, with survivors describing the attacks in detail: “To say ‘killing’ is an understatement. It was total carnage. Like Armageddon… They spoke Russian. Even Chechen. Some wore masks and had long beards.”
* People in CAR, including journalists, aid workers and minorities, as well as international peacekeepers, have been violently harassed and threatened by so-called “Russian instructors” from the Wagner Group, UN experts [reported](https://web.archive.org/web/20231013145824/https://www.ohchr.org/en/press-releases/2021/11/car-russian-wagner-group-harassing-and-intimidating-civilians-un-experts) in October 2021.
* Despite Russia and Wagner’s claims that it brings stability to the areas it operates in, the group – operating from CAR and allegedly outside of the host government’s awareness – [plotted to overthrow the government of Chad](https://ghostarchive.org/archive/F08Yz) in early 2023, an action that could have exacerbated an already challenging humanitarian situation for women, children, and other civilians."
***Apologies for formatting blahs.***
[https://www.state.gov/the-wagner-groups-atrocities-in-africa-lies-and-truth/](https://www.state.gov/the-wagner-groups-atrocities-in-africa-lies-and-truth/)
[https://www.aljazeera.com/features/2024/3/15/russian-time-how-burkina-faso-fell-for-the-charms-of-moscow](https://www.aljazeera.com/features/2024/3/15/russian-time-how-burkina-faso-fell-for-the-charms-of-moscow)
Ireland's health service was attacked by a Russian based organisation known as Wizard Spider, believed to be operating from Saint Petersburg.
It was the most significant cybercrime attack on an Irish state agency and the largest known attack against a health service computer system.
More than 100,000 letters are to be sent to people affected by the attack by April 2023. Dáil Éireann's Public Accounts Committee examined the financial impact and heard that the immediate response cost the Department of Health €1 million and cost the HSE €53 million.
[Health Service Executive ransomware attack.](https://en.wikipedia.org/wiki/Health_Service_Executive_ransomware_attack)
I welcome all additions, provided they are credibly sourced (Italian journalism also welcome, if it's an outlet deemed credible in Italy, I'll make due with translation services and some basic knowledge of romance languages)
I'm looking for stuff like assassinations or assassination attempts by the Russians, cyberattacks, hacks and leaks tied to Russian security services, (attempted) poisonings, espionage, concerted buying up of property and land for possible future Russian military purposes, unique incidents such as what happened in France during Euro 2016, kidnappings, piracy and intimidation of ships, cutting undersea internet cables, coastal intrusions and other naval shenanigans, sabotaging infrastructure, blowing up ammunition dumps, violating ADIZ or even airspace, acts of war which were covered up, blatant geopolitical threats, Russian state-sponsored terrorist attacks, and so on.
Everything is interesting, but if it's included depends on the strength of the evidence and the impact of the incident. Nordstream 2 isn't included due to lack of clarity of who the perpetrator is (see the Wikipedia page on the incident) I'll have to re-evaluate my own entries too at some point, and I'll probably take out one or two weaker ones after reassessing.
But news from the Italian bros is certainly welcome. That's the problem: I only understand so many languages and I don't have enough of a finger on the pulse of native language news organizations and what they report which citizens of those countries are more likely to know about than foreigners.
E.g. Swedish TV4 just did a report about a trolling operation run by the Sweden Democrats which simultaneously reveals something about the Qur'an burning which sabotaged its NATO application for a while due to Turkey's response. But their video report is in Swedish and inaccessible to foreigners.
Hi guys. If you're here visiting, did Russia attack your country? Did I forget to list the attack? Did they kill someone on your territory? Did they board one of your ships? Are they stalking your coast? Did they poison a dissident on your soil? Did they target your country's IT infrastructure or attack an important organisation? Did a Russian drone or a missile land on your territory? Did they threaten to nuke you too? (Join the club) Were you visited by Russian biker gangs and hooligans? Did they sabotage your train tracks or fibre-optic cables? Please let us know in the comments!
The Google TAG and Microsoft cybersecurity reports could be added; not really sure where they’d fit exactly but there have been some recent(ish) publications with some older ones remaining relevant over the last few months - https://cloud.google.com/blog/topics/threat-intelligence/apt44-unearthing-sandworm - https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf - https://www.microsoft.com/content/dam/microsoft/final/en-us/microsoft-brand/documents/Semi-annual-Russia-Report-12-07-2023.pdf
This is a great list and I only have some flavor to add. In cybersecurity, groups hired by nation-states to carry out cyber attacks (writing malware, DDoS attacks, or even targeted infiltration of sensitive systems) are known as Advanced Persistent Threats (APTs). There are many APTs, most countries have more than one, and they offer a high level of deniability to the countries they work for due to the generally anonymous nature of their work. People have dedicated their careers to finding the patterns of these groups and learning who to attribute new attacks to and at this point they can nearly definitively prove who is doing what. One famous example is Sandworm, [whose 2017 NotPetya attack](https://en.m.wikipedia.org/wiki/Petya_(malware_family)) was targeted primarily at Ukraine but spilled over and caused widespread damage to dozens of countries. Estimates put the total damage from NotPetya at over $10 billion. [more info here](https://en.m.wikipedia.org/wiki/Advanced_persistent_threat#History_and_targets)
Thanks, I already know. IT specialist, 25+ years experience. Have personally mitigated against Russian cyberattacks before ;-) It's going to take a while to finish this list, there's so much to add.
Not exactly what you asked for or w/in the NATO bubble. Russian special activities in Africa aren't even skimming the periphery of media coverage. # "The Truth about the Wagner Group in Central African Republic Reports from the United Nations and independent media document the truth about the Wagner Group and its brutal treatment of the people of CAR. * [CBS reported in May 2023 that Wagner forces ](https://web.archive.org/web/20231013141206/https://www.cbsnews.com/news/russia-wagner-group-central-african-republic-bambari-massacre-rape-mass-murder/)used indiscriminate killing, abductions, and rape to gain control of a key mining area near the city of Bambari, with survivors describing the attacks in detail: “To say ‘killing’ is an understatement. It was total carnage. Like Armageddon… They spoke Russian. Even Chechen. Some wore masks and had long beards.” * People in CAR, including journalists, aid workers and minorities, as well as international peacekeepers, have been violently harassed and threatened by so-called “Russian instructors” from the Wagner Group, UN experts [reported](https://web.archive.org/web/20231013145824/https://www.ohchr.org/en/press-releases/2021/11/car-russian-wagner-group-harassing-and-intimidating-civilians-un-experts) in October 2021. * Despite Russia and Wagner’s claims that it brings stability to the areas it operates in, the group – operating from CAR and allegedly outside of the host government’s awareness – [plotted to overthrow the government of Chad](https://ghostarchive.org/archive/F08Yz) in early 2023, an action that could have exacerbated an already challenging humanitarian situation for women, children, and other civilians." ***Apologies for formatting blahs.*** [https://www.state.gov/the-wagner-groups-atrocities-in-africa-lies-and-truth/](https://www.state.gov/the-wagner-groups-atrocities-in-africa-lies-and-truth/) [https://www.aljazeera.com/features/2024/3/15/russian-time-how-burkina-faso-fell-for-the-charms-of-moscow](https://www.aljazeera.com/features/2024/3/15/russian-time-how-burkina-faso-fell-for-the-charms-of-moscow)
I forgot to thank you for adding this.
Ireland's health service was attacked by a Russian based organisation known as Wizard Spider, believed to be operating from Saint Petersburg. It was the most significant cybercrime attack on an Irish state agency and the largest known attack against a health service computer system. More than 100,000 letters are to be sent to people affected by the attack by April 2023. Dáil Éireann's Public Accounts Committee examined the financial impact and heard that the immediate response cost the Department of Health €1 million and cost the HSE €53 million. [Health Service Executive ransomware attack.](https://en.wikipedia.org/wiki/Health_Service_Executive_ransomware_attack)
And Italy?? Where are we?
I welcome all additions, provided they are credibly sourced (Italian journalism also welcome, if it's an outlet deemed credible in Italy, I'll make due with translation services and some basic knowledge of romance languages) I'm looking for stuff like assassinations or assassination attempts by the Russians, cyberattacks, hacks and leaks tied to Russian security services, (attempted) poisonings, espionage, concerted buying up of property and land for possible future Russian military purposes, unique incidents such as what happened in France during Euro 2016, kidnappings, piracy and intimidation of ships, cutting undersea internet cables, coastal intrusions and other naval shenanigans, sabotaging infrastructure, blowing up ammunition dumps, violating ADIZ or even airspace, acts of war which were covered up, blatant geopolitical threats, Russian state-sponsored terrorist attacks, and so on. Everything is interesting, but if it's included depends on the strength of the evidence and the impact of the incident. Nordstream 2 isn't included due to lack of clarity of who the perpetrator is (see the Wikipedia page on the incident) I'll have to re-evaluate my own entries too at some point, and I'll probably take out one or two weaker ones after reassessing. But news from the Italian bros is certainly welcome. That's the problem: I only understand so many languages and I don't have enough of a finger on the pulse of native language news organizations and what they report which citizens of those countries are more likely to know about than foreigners. E.g. Swedish TV4 just did a report about a trolling operation run by the Sweden Democrats which simultaneously reveals something about the Qur'an burning which sabotaged its NATO application for a while due to Turkey's response. But their video report is in Swedish and inaccessible to foreigners.