Cyberwarfare by Russia comprises denial-of-service campaigns, hacking operations, disinformation programs, and state-directed online repression, including participation of state-sponsored teams in political blogs, internet surveillance using SORM technology, and other active measures, executed by Russian security and intelligence agencies since the 1990s to advance Kremlin geopolitical objectives.
Russian doctrine frames these operations within an informatsionnoye protivoborstvo (IPb), or information confrontation, approach that fuses technical network actions with psychological measures. Units of the GRU, FSB, and SVR oversee hacker collectives such as APT28, APT29, Sandworm, Turla, and Star Blizzard that target governments, infrastructure, and civil society across Europe, North America, and Asia.
