The popular collective Anonymous, and its affiliates, relentlessly continue their offensive against Russian targets. In the last few hours, in addition to government sites, the sites of the country’s main banks have been brought to their knees. News of alleged data leaks is circulating online, a hacker group known as AgainstTheWest which is supporting Anonymous claims to have hacked the Russian state-owned Sberbank bank and promise to leak the data soon. Stolen data included is DNS infrastructure, private keys for SSL, sberbank API, CLI and SDKs.
The website of the bank is down at the time of this writing.
The group also hacked the Russian tool manufacturer NPKTAIR, which works with designing TVs and broadcasting radios in Russia, and flyrf[.]ru, A russian plane tracking system, has been broken into and permissions removed. Anon users can now change details about planes without the need to, as well as view important information : – )
The group also hit the Russian diversified financial holding OJSC Ak Bars Holding claiming that data included in its compromised systems is similar to that of the Sberbank.
Curiously the group noticed the presence of a Monero cryptominer XMR on Ak Bars Holdings, it is not clear if the company was mining cryptocurrency or was previously compromised by a criminal organization that abused its resources.
Russian citizens are facing huge inconvenience due to the cyberattacks, they are unable to carry out any online banking operation and interact with the government services.
An Anonymous account reported a couple of days ago that the #OpRussia campaign launched by the collective had already taken down more than 300 Russian government, state media and bank websites in only 48 hours.
Anonymous is also conducting propaganda activities spreading news directly from the battlefield, yesterday the group shared the conversation between a Russian soldier who died in action and his mum. The soldier confirmed that the Russian Army is attacking everything.
Yesterday, the hacking group Network Battalion 65 (‘NB65’) which is affiliated with Anonymous, announced to have shut down the Control Center of the Russian Space Agency ‘Roscosmos’. According to the group, Russia lost control over some of its satellites due to the attack, anyway, it is likely that the attack was not so serious and the impact on the targeted system was only temporary.
The news of the attack could not be confirmed at this time. Yesterday, another group known as Kelvinsecurity announced to have hit a #nuclear reactor and gained access to security cameras.
No news of disruption was reported by the group:
In addition to this, however, there is a silent and continuous operation that aims to hit Russian critical infrastructures with the intention of dissuading its unacceptable and bloody invasion.
Anonymous has the technical skills to target multinational companies and systems in critical sectors, so it is likely that in the next few hours it will see clamorous developments.
Stay tuned ….
Follow me on Twitter: @securityaffairs and Facebook
[adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, Anonymous)
[adrotate banner=”5″]
[adrotate banner=”13″]