On January 27, the European Council imposed additional restrictive measures on three Russian individuals linked to cyberattacks against Estonia in 2020. These individuals are officers of the General Staff of the Armed Forces of the Russian Federation (GRU), specifically from Unit 29155.
These cyberattacks allowed attackers to gain unauthorised access to classified information and sensitive data stored within several government ministries, including the Ministries of Economic Affairs and Communications, Social Affairs, and Foreign Affairs. This breach resulted in the theft of thousands of confidential documents, including business secrets, health records, and other critical information, compromising the security of the affected institutions.
Unit 29155 is also involved in cyberattacks against other EU members and Ukraine, and it has been previously sanctioned for its destabilising activities in Europe.
With these latest actions, the EU’s sanctions target 17 individuals and four entities, including asset freezes and travel bans. This reflects the EU’s commitment to countering cyber threats and promoting a secure cyberspace. Relevant legal acts have been published in the Official Journal of the European Union.
