Massive Cyberattack Disrupts Georgia’s Media and Government Websites
A large-scale cyberattack struck Georgia on [date not specified], crippling over 2,000 websites, including government portals, non-governmental organizations, and private companies. Among the hardest-hit targets were major television networks Imedi TV and Maestro, with Imedi going off-air for nearly an hour and Maestro reporting damaged or destroyed equipment. Court websites containing sensitive case materials and personal data were also compromised.
Many affected sites displayed a defaced homepage featuring an image of former Georgian President Mikheil Saakashvili alongside the message "I'll be back." Saakashvili, who led Georgia from 2004 to 2013, was deported from Ukraine in 2018 after a political fallout but had his Ukrainian citizenship reinstated in 2019. He remains a polarizing figure, wanted in Georgia on criminal charges he claims are politically motivated.
Cybersecurity experts, including Professor Alan Woodward of Surrey University, described the attack as unprecedented in scale for Georgia, though critical national infrastructure appeared unharmed. Sources familiar with the country’s cyber defenses noted that Georgian government websites were "poorly protected and vulnerable to attack."
While the perpetrators remain unidentified, speculation on social media has pointed to Russia, given the attack’s sophistication and the nature of the targets. BBC Caucasus correspondent Rayhan Demytrie suggested the scale and precision of the disruption strongly indicate state involvement. The incident follows a history of tense relations between Georgia and Russia, including past cyber incidents and political disputes.
The full extent of the damage and the attack’s origin are still under investigation.
Source: https://www.bbc.com/news/technology-50207192
Georgian Public Broadcaster cybersecurity rating report: https://www.rankiteo.com/company/georgian-public-broadcaster
Maestro Media cybersecurity rating report: https://www.rankiteo.com/company/maestromedia
TELEIMEDI (IMEDI TV) cybersecurity rating report: https://www.rankiteo.com/company/teleimedi-imedi-tv-
"id": "GEOMAETEL1780527547",
"linkid": "georgian-public-broadcaster, maestromedia, teleimedi-imedi-tv-",
"type": "Cyber Attack",
"date": "10/2019",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Broadcasting',
'location': 'Georgia',
'name': 'Imedi TV',
'type': 'Media (Television Network)'},
{'industry': 'Broadcasting',
'location': 'Georgia',
'name': 'Maestro',
'type': 'Media (Television Network)'},
{'industry': 'Public Sector',
'location': 'Georgia',
'name': 'Georgian Government Portals',
'type': 'Government'},
{'industry': 'Public Sector',
'location': 'Georgia',
'name': 'Georgian Court Websites',
'type': 'Government (Judicial)'},
{'industry': 'Various',
'location': 'Georgia',
'name': 'Non-Governmental Organizations (NGOs)',
'type': 'Non-Profit'},
{'industry': 'Various',
'location': 'Georgia',
'name': 'Private Companies',
'type': 'Private Sector'}],
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (legal and personal information)',
'type_of_data_compromised': 'Sensitive case materials, '
'personal data'},
'description': 'A large-scale cyberattack struck Georgia, crippling over '
'2,000 websites, including government portals, '
'non-governmental organizations, and private companies. Major '
'television networks Imedi TV and Maestro were among the '
'hardest-hit targets, with Imedi going off-air for nearly an '
'hour and Maestro reporting damaged or destroyed equipment. '
'Court websites containing sensitive case materials and '
'personal data were also compromised. Many affected sites '
'displayed a defaced homepage featuring an image of former '
'Georgian President Mikheil Saakashvili alongside the message '
"'I'll be back.'",
'impact': {'brand_reputation_impact': 'Likely significant for affected '
'entities',
'data_compromised': 'Sensitive case materials and personal data',
'downtime': 'Imedi TV off-air for nearly an hour',
'identity_theft_risk': 'Possible due to compromised personal data',
'operational_impact': 'Damaged or destroyed equipment (Maestro), '
'disrupted media and government services',
'systems_affected': 'Over 2,000 websites, including government '
'portals, NGOs, and private companies'},
'investigation_status': 'Ongoing',
'motivation': 'Political, Speculated State-Sponsored',
'post_incident_analysis': {'root_causes': 'Poorly protected and vulnerable '
'government websites'},
'references': [{'source': 'BBC Caucasus (Rayhan Demytrie)'},
{'source': 'Professor Alan Woodward (Surrey University)'}],
'title': 'Massive Cyberattack Disrupts Georgia’s Media and Government '
'Websites',
'type': 'Cyberattack, Website Defacement, Data Compromise',
'vulnerability_exploited': 'Poorly protected and vulnerable government '
'websites'}