• Military
• WMD
• Intelligence

• Security Menu                     

• Systems
• Industry
• Operations
• Hot Documents
• News
• Reports
• Policy
• Budget
• Congress
• Links

• Space

NATO and the EU strongly condemn the malicious cyber activities carried out against multiple NATO and EU Member States by entities subordinated to Russia's military intelligence service (GRU)

Romania - Ministry of Foreign Affairs

Type: Press release
Date: 07/18/25

NATO and the EU strongly condemn the malicious cyber activities carried out against multiple NATO and EU Member States by entities subordinated to Russia's military intelligence service (GRU). GRU-subordinated actors have targeted public institutions, critical infrastructure operators and other entities within the Alliance's and EU's territory, including in Romania.

These malicious cyber activities, which have intensified on the backdrop of Russia's war of aggression against Ukraine, are part of an array of more complex hybrid campaigns waged by the Russian Federation against EU Member States and NATO Allies, including Romania, as well as against partners of the two organisations. The aim of these campaigns is both to undermine the stability and democratic resilience of the targeted countries and to deter continued support to Ukraine.

Romania condemns these malicious cyber activities and shares NATO and the EU's evaluation that they demonstrate the Russian Federation's disregard of the normative framework on responsible state behaviour in the cyberspace, such as it has been defined by the UN. We call on the Russian Federation to respect its international obligations.

Romania stands in solidarity with other Allies, EU Member States and partners affected by these malicious cyber activities and will continue to engage actively in the intensifying efforts to prevent, deter and respond to such destabilising actions.

Background information:

The North Atlantic Council published, on the 18th of July, a Statement of condemnation concerning Russian malicious cyber activities, available at:

https://www.nato.int/cps/en/natohq/official_texts_237067.htm

On the same day, the EU High Representative put forward a Statement on behalf of the EU condemning Russia's persistent hybrid campaigns against the EU, its Member States and partners, available at:

https://www.consilium.europa.eu/en/press/press-releases/2025/07/18/hybrid-threats-russia-statement-by-the-high-representative-on-behalf-of-the-eu-condemning-russia-s-persistent-hybrid-campaigns-against-the-eu-its-member-states-and-partners/

The GRU possesses a very advanced cyber programme, having proven in time that it has the necessary capabilities to support the Russian Federation's strategic objectives. In this regard, multiple GRU military units are conducting malicious cyber campaigns at international level and are coordinating the activity of APT28/Fancy Bear, APT44/Sandworm and APT Ember Bear. These actors' cyber operations are aimed at governmental institutions, military organisations, critical infrastructure, media publications, NGOs, etc. from Allied countries, EU member states and partner countries.

At the 2021 Brussels NATO Summit, Allies approved the new Comprehensive Cyber Defence Policy. Allies reaffirmed NATO's defensive mandate and pledged to employ all capabilities in order to deter, defend against and counter the full spectrum of cyber threats during peacetime, crisis and conflict.