To an extent, you are correct: many countries participate in the cyber-spy/cyber-espionage game. Where, perhaps, you are incorrect is that this is normal. The GRU has lead exceptionally aggressive cyber-attacks on just about everyone, particularly Estonia and Ukraine.

If you're interested in this topic, I'd like to suggest the wondeful (and terrifying) book, Sandworm (https://www.amazon.com/Sandworm-Cyberwar-Kremlins-Dangerous-...) by Andy Greenberg.

If anyone is interested in how the original infection went down, along with the recovery, I can recommend the book "Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers" https://www.amazon.co.uk/Sandworm-Cyberwar-Kremlins-Dangerou...

It covers Maersk, lots of infections that paralysed Ukraine, along with the whole Iran mess that was instigated by the US.

Very interesting book, I thoroughly enjoyed it.