Cyber espionage Against Georgia
24 October, 2012

CERT.GOV.GE – Computer Emergency Response Team of Data Exchange Agency of the Ministry of Justice of Georgia has been involved in investigation of computer virus – officially named Win32/Georbot – since February, 2011.

Original source of virus was found in codes of news portals operating in Georgia.
One of the infected websites was also discovered among governmental official websites.

Win32/Georbot
is a sophisticated virus, which has high level of penetration and is able to gain unlawful access to any type of documents. By using PC the virus is also capable of capturing and recording audio and video files, copying user’s desktop and sending the information to managing computers.

“Our staff discovered the virus in February 2011 and started response operation immediately.
During the process we have been in active contact with the Ministry of Internal Affairs and other foreign partner organizations. The virus we have detected is very sophisticated and requires professional treatment.” – Irakli Gvenetadze, DEA Chairman.

Full report is available on the following link:  
Cyber espionage Against Georgia - ENG (PDF)