Everything you need to know about the GRU: history, recruitment, special units, key operations, and geopolitical impact. Discover the role of Russian military intelligence.
The GRU (Glavnoe Razvedyvatelnoe Upravlenie), or Main Intelligence Directorate, is Russia’s military intelligence agency. Officially founded in 1918, it stands out for its autonomy compared to other Russian agencies such as the FSB. Its primary mission is the collection of military intelligence abroad, and it plays a key role in the country’s defense strategy. Over the decades, the GRU has been involved in numerous clandestine operations worldwide, including espionage, sabotage, and military support in conflict zones.
Unlike other agencies, the GRU directly controls its special units, the renowned Spetsnaz, trained for reconnaissance and sabotage missions behind enemy lines. During the Cold War, these forces participated in major operations in Eastern Europe and Afghanistan.
The GRU has also been at the center of several international scandals, particularly related to cyberattacks, such as those targeting the 2016 U.S. elections. With specialized divisions in cyber espionage, strategic intelligence, and information warfare, the GRU continues to influence global geopolitics, despite notorious failures that have sometimes compromised its international reputation.
1. History of the GRU
Origins in 1918
The GRU was founded in 1918 during the Russian Civil War, under the leadership of Leon Trotsky and the command of the Red Army. The GRU was established to centralize and coordinate military intelligence to protect the young Soviet Union from internal and external threats. Initially known as Registrupr, its missions focused primarily on tactical and strategic intelligence on the front lines.
From its inception, the GRU differentiated itself from other Soviet intelligence agencies, notably the Cheka, by focusing on military operations and foreign intelligence. This separation allowed the GRU to operate with more secrecy, often outside the traditional intelligence frameworks like the KGB.
Role during the Cold War
During the Cold War, the GRU was at the heart of the struggle for supremacy between the East and West blocs. It handled military espionage in NATO countries and collected intelligence on U.S. military capabilities. The GRU also played a significant role in supporting guerrilla movements and revolutionary groups across Asia, Africa, and Latin America, often supplying arms and intelligence.
One of the GRU’s most notable operations during this period was the capture of the USS Pueblo by North Korea in 1968. GRU officers were sent to inspect the ship and recover sensitive equipment, enhancing Soviet intelligence capabilities.
Post-USSR Reorganization
After the dissolution of the Soviet Union in 1991, the GRU had to adapt to a new geopolitical context. Unlike the KGB, which was divided into multiple agencies (including the FSB and SVR), the GRU maintained continuity in its missions and structure. However, the lack of resources and funding in the 1990s severely affected its operational capabilities, particularly those of the Spetsnaz units, which had to scale back their operations.
Despite these challenges, the GRU retained its strategic role, especially in foreign military intelligence. It notably played a role in the Chechen conflicts of the 1990s and 2000s and in operations against insurgent groups in the region.
Impact of Modern Conflicts (Afghanistan, Chechnya)
The GRU’s involvement in recent conflicts, such as Afghanistan and Chechnya, demonstrated its ability to conduct sabotage, reconnaissance, and counterinsurgency operations. In Afghanistan, the GRU orchestrated several covert actions against Western forces, while in Chechnya, it managed direct operations against separatist forces, often using Spetsnaz units for targeted assassinations and neutralizing insurgent leaders.
The GRU’s role in cyberattacks, notably during the 2016 U.S. elections, and its involvement in international incidents like the poisoning of Sergey Skripal in the U.K., have reinforced its image as an aggressive and unscrupulous service on the international stage. These operations highlight the GRU’s adaptability to new forms of warfare, particularly hybrid warfare and cyber espionage.
2. Structure and departments
Internal organization: regional and functional divisions
The GRU is organized into several specialized divisions covering specific geographical areas and functions. It is structured to ensure global military intelligence, operating across different continents. For instance, it has divisions dedicated to espionage in Europe, the United States, Asia, and the Middle East and Africa. These regional divisions enable the collection of intelligence tailored to each region’s geopolitical context. Each division is responsible for recruiting agents, gathering intelligence, and supporting military operations in these regions.
On the functional side, the GRU has specialized divisions in key areas of military intelligence. For example, the 5th department focuses on strategic reconnaissance, while the 6th department handles communication surveillance, a crucial function in modern espionage. Another example is the 7th department, which focuses on analyzing collected data to provide actionable intelligence.
Special units (Spetsnaz)
The GRU directly controls the Spetsnaz units, among the most renowned and well-trained special forces in the world. Created in the 1950s, the Spetsnaz units specialize in high-risk missions, such as targeted assassinations, sabotage, and deep reconnaissance behind enemy lines. They notably participated in the Afghan War, where they conducted operations against rebel forces and strategic infrastructure.
The Spetsnaz units are also known for their role in modern operations, such as in Syria or Ukraine, where they have been used for special, often covert, missions. Their intensive training includes skills in close combat, explosives, and survival in extreme conditions. They are also integrated into strategic sabotage plans, targeting vital infrastructures such as communication nodes and weapon depots.
Roles of different sections (espionage, cyber, disinformation)
The GRU has several sections specializing in espionage and hybrid warfare operations. One key section is dedicated to classic espionage, which relies on infiltrating agents (often under false identities), as well as illegals living abroad. These agents operate under civilian covers, sometimes for decades, as seen in the case of agents sent to carry out long-term operations in hostile countries.
The division specializing in cyber operations has particularly distinguished itself in recent years, playing a central role in the cyberattacks attributed to Russia, notably those targeting the 2016 U.S. elections. Attacks carried out by this division use sophisticated phishing techniques and infiltrations into government and private systems.
Finally, the GRU conducts disinformation and psychological warfare operations. This includes disseminating false information on a large scale to destabilize foreign governments or influence public opinion. Historically, the GRU has conducted disinformation campaigns regarding events such as the death of John F. Kennedy and conspiracy theories about U.S. biological weapons. These operations are often coordinated with other branches of the Russian government to maximize their geopolitical impact.
3. Recruitment and training
Recruitment criteria
The GRU recruits candidates primarily from Russian military academies and technical universities, with an emphasis on proficiency in foreign languages, cryptography, and a solid foundation in military science and information technology. Recruits are evaluated based on their ability to operate in hostile environments and carry out missions requiring high levels of discretion. Candidates are selected for their psychological resilience and ability to conduct operations deep behind enemy lines.
The preferred candidates often have proven records within the Russian military, particularly in elite units, or have undergone specialized training. Basic criteria include a clean criminal record, loyalty to the state, and strong analytical skills. Internal recommendations, especially for military officers with operational experience, can also facilitate entry into the GRU.
Agent training process (spies and Spetsnaz)
Training within the GRU is known for being rigorous and highly specialized. Future spies undergo intensive instruction in infiltration techniques, encryption, and electronic warfare. They are trained in the use of modern technology to gather intelligence and create fictitious identities for operations in foreign environments.
Field agents, particularly those deployed on long-term missions, are trained to live under cover identities for years. They may be sent abroad under civilian covers, such as businessmen or diplomats. A well-known case is that of Sergey Skripal, whose poisoning in the UK highlighted the GRU’s infiltration activities.
For Spetsnaz units under GRU command, training is physically intense and covers advanced skills in close combat, sabotage, and long-range reconnaissance. These soldiers are also trained in the use of explosives, detection technologies, and operations in hostile environments such as arctic regions and deserts. Their training scenarios include simulations of special operations under extreme conditions.
The role of military schools in agent development
Russian military schools are central to the development of GRU agents. The Frunze Military Academy and the Gagarin Air Force Academy are two key institutions where future GRU officers receive their initial training. These programs focus on military engineering, information warfare, and strategic sciences. Students undergo an intense multi-year curriculum, with practical internships in GRU operational units.
Officers destined for command positions within the Spetsnaz units also receive training in specialized academies, such as the Airborne Forces Academy. There, they are trained in advanced asymmetric warfare techniques and rapid tactical deployments. These schools prepare the future leadership of the GRU, ensuring the continuity of the essential skills required for the units to survive and adapt to contemporary threats.
4. Key operations
Participation in international conflicts (Afghanistan, Syria)
The GRU has played a central role in several major military conflicts, notably in Afghanistan and Syria. In Afghanistan, during the Soviet invasion (1979-1989), Spetsnaz units controlled by the GRU carried out infiltration and sabotage operations against rebel forces. These units were responsible for neutralizing strategic targets and supporting Soviet troops on the ground. Their missions included attacks on ammunition depots and disrupting enemy communication lines.
In Syria, since 2015, the GRU has coordinated espionage operations and military missions in support of Bashar al-Assad’s forces. GRU agents provided tactical and strategic intelligence for Russian airstrikes and ground assaults. The GRU also oversaw electronic warfare actions, disrupting rebel and jihadist communications. This intervention has allowed Russia to strengthen its influence in the Middle East while consolidating its strategic alliances.
Major cyberattacks (2016 elections, doping agencies hacking)
The GRU has also been involved in several cyberattacks, most notably during the 2016 U.S. presidential elections. Two specific GRU units, often referred to by the codenames APT28 (Fancy Bear) and APT29 (Cozy Bear), were involved in hacking the servers of the Democratic National Committee and leaking sensitive emails. These actions were aimed at undermining the integrity of the U.S. electoral process and influencing the election outcome.
In 2018, GRU agents were also involved in hacking international anti-doping agencies, particularly the World Anti-Doping Agency (WADA), in response to the suspension of Russian athletes for doping. This operation aimed to steal confidential data and discredit the evidence of systematic doping in Russia. The GRU used sophisticated phishing techniques and infiltration to access agency systems, demonstrating its capacity for complex cyber espionage.
Industrial and political espionage
The GRU is also highly active in industrial espionage and political interference. It targets strategic industries in sectors such as energy, technology, and defense. One notable operation involved the hacking of Westinghouse Electric, an American company specializing in nuclear technology, to acquire information on its defense contracts. The GRU uses both undercover agents and cyberattacks to obtain industrial secrets, which it then passes on to Russian authorities.
On the political front, the GRU has orchestrated actions to influence political decisions in various countries. For example, its direct support for separatist movements in Ukraine and its involvement in hybrid warfare have shown how the agency combines espionage, sabotage, and propaganda to destabilize adversary nations and strengthen Russia’s strategic positions.
5. Successes and failures
Successful operations (Afghanistan, interventions in Syria)
The GRU has been involved in a number of successful military operations, particularly during the Soviet-Afghan War and Russia’s intervention in Syria. In Afghanistan, during the Soviet invasion (1979-1989), Spetsnaz units under GRU command conducted critical sabotage and reconnaissance missions against the mujahideen. These elite forces disrupted supply lines, targeted leadership, and executed high-risk operations behind enemy lines. The GRU’s contribution helped the Soviet army achieve certain tactical victories, although the overall war effort ended in a Soviet withdrawal.
In Syria, since 2015, the GRU has played a significant role in supporting Bashar al-Assad‘s regime. Its Spetsnaz units, along with Russian airstrikes, have conducted ground operations against both rebel forces and terrorist groups like ISIS. These operations have been crucial in regaining control of key areas such as Aleppo. Furthermore, GRU intelligence has provided the Russian military with actionable data for precision strikes, while its electronic warfare units have disrupted enemy communications.
Scandals and failures (Skripal poisoning, arrests in Europe)
The GRU has also been at the center of several high-profile international scandals, some of which have seriously tarnished its reputation. One of the most notorious incidents was the poisoning of Sergey Skripal in 2018. Skripal, a former GRU officer who had defected to the UK, was targeted in Salisbury with the nerve agent Novichok by GRU operatives. The attack led to international outrage, resulting in widespread diplomatic expulsions of Russian officials and sanctions against the country.
Additionally, the GRU has faced failures in the realm of cyber espionage. In 2018, four GRU agents were caught attempting to hack the Organisation for the Prohibition of Chemical Weapons (OPCW) in The Hague, Netherlands. This operation was part of a broader attempt to undermine international investigations into Russia’s use of chemical weapons, including the Skripal case. The agents were detained with hacking equipment and later expelled from the country. This exposure severely damaged the GRU’s credibility and led to further international scrutiny of its activities.
6. Geopolitical impact
Influence of the GRU on Russian foreign policy
The GRU plays a critical role in shaping Russia’s foreign policy, especially in areas involving military intelligence and covert operations. The agency provides essential intelligence on the political and military intentions of foreign powers, enabling the Russian government to craft responses to both adversaries and allies. The GRU’s espionage activities often intersect with Russia’s broader geopolitical strategies, particularly in Eastern Europe, the Middle East, and Western democracies.
One example is the GRU’s involvement in hybrid warfare in Ukraine, where it has supported pro-Russian separatists in the Donbass region. By using a combination of espionage, cyberattacks, and covert military assistance, the GRU has contributed to destabilizing Ukraine’s government and weakening its Western alliances. This approach aligns with the Kremlin’s broader objective of preventing NATO expansion and maintaining influence over former Soviet states.
Role in modern conflicts and hybrid warfare
In recent years, the GRU has been a key player in modern conflicts, particularly through its use of hybrid warfare tactics. Hybrid warfare, which combines conventional military actions with cyberattacks, disinformation campaigns, and covert operations, has been a hallmark of Russian military strategy. The GRU has utilized these methods extensively in Ukraine and Syria.
For example, in Ukraine, the GRU has been implicated in cyberattacks on critical infrastructure, including the country’s power grid, as well as the annexation of Crimea in 2014. The agency has coordinated sabotage operations and provided intelligence to separatist forces, significantly contributing to the prolonged conflict in the region.
In Syria, the GRU has combined military intelligence with electronic warfare to weaken rebel forces and protect Russian interests. By disrupting enemy communications and conducting counter-intelligence operations, the GRU has helped secure strategic victories for both Russian and Syrian forces.
The GRU and international alliances (NATO, EU)
The GRU’s actions have had a profound impact on Russia’s relations with international organizations such as NATO and the European Union. Many GRU operations, particularly those involving cyberattacks and espionage, have directly targeted NATO member states, fueling tensions between Russia and the West. For instance, GRU agents were involved in the 2015 cyberattack on the Bundestag, Germany’s federal parliament, which led to increased concerns about Russian interference in European democracies.
These actions have prompted NATO and the EU to strengthen their cybersecurity measures and bolster intelligence-sharing efforts. Additionally, the exposure of GRU operations has led to the imposition of sanctions on Russia, further isolating it on the international stage. As NATO and EU countries continue to respond to GRU provocations, Russia’s relationship with these alliances remains tense, with the GRU playing a central role in shaping these dynamics.
7. Future challenges
Cybersecurity threats
The GRU has established itself as a key player in the realm of cyber operations, with units such as APT28 (Fancy Bear) conducting high-profile cyberattacks. As cybersecurity threats continue to evolve, the GRU is expected to maintain and expand its cyber activities. These include targeting critical infrastructure such as power grids, financial systems, and communication networks in adversary countries. For example, the 2015 attack on the Ukrainian power grid demonstrated the GRU’s ability to disrupt vital systems and cause widespread damage. In the future, the GRU may incorporate more advanced techniques, such as artificial intelligence and machine learning, into its cyber operations.
Cyber espionage will likely remain one of the GRU’s primary tools for gaining intelligence and destabilizing foreign governments. Its cyber units are known for conducting phishing campaigns, infiltrating government databases, and extracting confidential information. As global reliance on digital infrastructure increases, so does the potential for these operations to inflict significant damage.
Evolution of espionage and sabotage methods
The GRU’s espionage tactics have historically evolved alongside technological advancements, and this trend is expected to continue. The agency is likely to deploy increasingly sophisticated surveillance tools, such as miniature drones and covert surveillance technologies, to gather intelligence in hostile environments. These devices will complement traditional methods of human intelligence (HUMINT) gathering, where undercover agents work within foreign countries under long-term cover identities.
In terms of sabotage, the GRU has shown a strong ability to adapt its methods to contemporary warfare. Future sabotage operations could involve cyber weapons designed to incapacitate critical supply chains or compromise military infrastructure. Moreover, the GRU is likely to continue utilizing its Spetsnaz units for precision strikes and high-value target assassinations behind enemy lines. These elite forces, with their expertise in close-quarters combat and demolition, are expected to remain a key asset in Russia’s asymmetric warfare strategies.
The GRU’s place in the global geopolitical context
The GRU will continue to be a central instrument in Russia’s global geopolitical strategy. As Russia seeks to challenge Western dominance, the GRU’s role in hybrid warfare—a blend of conventional military operations, cyber warfare, and disinformation campaigns—will be essential. The conflict in Ukraine has demonstrated how the GRU’s covert operations can destabilize regions, influencing the political and military landscape without direct large-scale confrontations.
The Arctic region, rich in resources and strategically important for military access, could become a new focus for GRU operations. As Russia aims to strengthen its claims and protect its interests in this region, the GRU may play a pivotal role in gathering intelligence and executing covert operations. In addition, as global powers, including the United States and China, vie for influence in the Middle East, the GRU is expected to continue supporting Russian objectives through intelligence, military partnerships, and covert actions in countries like Syria.
The GRU’s future missions will likely reflect Russia’s broader geopolitical ambitions, using its blend of cyber operations, military intelligence, and special forces to exert influence across the globe.
War Wings Daily is an independant magazine.