In a coordinated cyberattack, pro-Ukraine hacker group “Silent Crow”, in partnership with Belarusian Cyber Partisans “BY”, have reportedly completely destroyed the internal IT infrastructure of Russian airline Aeroflot, Silent Crow has claimed via a post on their Telegram channel on July 28.
In the same post, hackers have revealed that they had infiltrated the airline’s corporate network for over a year.
The cyberattack, which targeted Aeroflot’s critical corporate systems, has caused significant damage to the company, including the destruction of approximately 7,000 physical and virtual servers, Silent Crow stated.
Hackers also claimed that they were able to compromise various systems, including CREW, Sabre, SharePoint, Exchange, CASUD, Sirax, CRM, ERP, 1C, and DLP, and also took control of personal computers, including those of top management.
In addition, the hackers had reportedly extracted data from surveillance servers, including audio recordings of phone calls and intercepted communications. The total amount of information extracted is estimated at 12TB of databases, 8TB of files from Windows Share, and 2TB of corporate emails.
The group also said they have gained access to 122 hypervisors, 43 ZVIRT virtualization installations, around 100 iLO interfaces for server management, and four Proxmox clusters. They went on to say that all the resources are now either inaccessible or destroyed, and the cost of recovery could run into the tens of millions of dollars.
“For the FSB, NCSCI, RT-Solar and other so-called ‘cyber defenders’ – you are incapable of protecting even your key infrastructures. For all members of the repressive apparatus – your digital security is negligible, and you yourself have been under surveillance for a long time,” Silent Crow wrote in their post, mocking Russian security agencies.
The group has promised to release part of the obtained data soon, adding that their operation was not just about destruction—it was also about leaving a trace.
The personal data of all Russian citizens who have flown with Aeroflot is also now “on the move,” according to the hackers.
This attack is part of Silent Crow’s broader efforts, which previously included hacking Russian telecommunications giant Rostelecom and the Russian State Register, where they claimed to have released sensitive data online, The Moscow Times reports.
Aeroflot had reported that there was a failure in its information system that has led to 42 flights being canceled. However, the company did not specify what it was related to and how long it might take to fix it, according to The Moscow Times.
Earlier, it was reported that a large-scale cyberattack carried out by Ukrainian hackers against Russian energy giant Gazprom has reportedly caused significant disruptions and wiped out vast amounts of critical data.
Be the first to know
Subscribe to updates and get important information first
Thank you for subscription!
We will send you only important information
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply
Choose your language
Russian Airline Hit by IT Outage, Pro-Ukraine Hackers Take Credit – UNITED24 Media
