Hackers claim destruction of Aeroflot’s IT infrastructure, airline cancels flights
28 July 17:21
The Silent Crow hacker group has announced the complete destruction of the internal IT infrastructure of the Russian airline Aeroflot as part of a large-scale cyberattack that lasted more than a year. This was reported byThe Moscow Times with reference to the hackers’ Telegram channel, "Komersant Ukrainian" reports.
According to Silent Crow, together with the BelarusianCyber Partisans BY, they had access to the airline’s corporate network for a year, which allowed them to destroy about 7,000 physical and virtual servers.
The hackers claim to have gained full control over the company’s critical infrastructure, flight databases, corporate mail, files from internal storage, and personal computers of employees, including management. They also copied data from video surveillance and personnel control systems.
The total amount of information stolen was 12 TB of databases, 8 TB of files from corporate Windows shares, and 2 TB of emails. According to the hackers, all these resources are no longer available or have been destroyed. Restoration of the infrastructure is estimated to cost tens of millions of dollars.
“This is a message to the security forces and organizations that are unable to protect the country’s critical infrastructure,” Silent Crow said.
Earlier, the group claimed responsibility for attacks on Rostelecom and Rosreestr, publishing personal data of Russians.
This morning, Aeroflot reported a “failure in the information system,” but did not specify the reasons or the estimated time of elimination. At the time of publication, at least 42 flights from and to Moscow’s Sheremetyevo airport have already been canceled.
Crowds of passengers have gathered at the airport itself. “Aeroflot promised to refund canceled tickets “in the next 10 days” but warned that ticket offices were temporarily not issuing refunds or re-issuing flights.
