TZUTC: -0500
MSGID: 1295.consprcy@1:2320/105 2cee0cf8
PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
BBSID: CAPCITY2
CHRS: ASCII 1
FORMAT: flowed
Aeroflot hacked - Russia's biggest airline forced to ground flights following
attack

Date:
Tue, 29 Jul 2025 11:17:00 +0000

Description:
Two groups claimed responsibility for Aeroflot attack - one from Ukraine, and
one from Belarus.

FULL STORY

Aeroflot, Russias largest airline, has suffered a cyberattack which disrupted
its operations and grounded dozens of flights. 

The news was confirmed by the airline, as well as by the Kremlin itself - and
also by two cybercriminal groups who claimed responsibility for the attack -
Silent Crow, and Cyberpartisans. 

The former is a Ukrainian group, while the latter - Belarusian. "War on all
fronts" 

In a Telegram group, Silent Crow apparently said its prolonged and 
large-scale operation - completely destroyed the airlines IT system. As a
result, more than 40 flights were canceled, the BBC reported, mostly domestic
flights inside Russia, but also a few routes to Belarus and Armenia. 

Cyberpartisans also confirmed taking part in the hack, noting, "We are 
helping Ukrainians in their fight with the occupier, carrying out a cyber
strike on Aeroflot and paralysing the largest airline in Russia." 

Reliable information from Russia is hard to come by, but some media are
reporting that the airline confirmed having issues with its information
system. 

"We must not forget that the war against our country is being waged on all
fronts, including the digital one, the BBC cited Anton Gorelkin, a Russian 
MP. 

Since the war between Russia and Ukraine started in 2022, cybercriminals,
hacktivists, and state-sponsored hacking groups have been active more than
usual, trading blows across the internet, disrupting critical infrastructure
organizations, spying on military, defense, government, and IT organizations,
and stealing sensitive data. 

Conti, which was a major ransomware operator at the time, publicly sided with
Russia, stating they would retaliate against any attacks on Russia in
cyberspace. This angered its affiliates, many of which were Ukrainian. Soon
after, an unidentified hacker leaked Contis chat logs which, although
indirectly, resulted in the groups disbanding. 

In June 2024, one person was arrested in Ukraine, under suspicion that they
developed encryptors for Conti.

======================================================================
Link to news story:
https://www.techradar.com/pro/security/aeroflot-hacked-russias-biggest-airline
-forced-to-ground-flights-following-attack

$$
--- SBBSecho 3.28-Linux
 * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)
SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700
SEEN-BY: 226/30 227/114 229/110 111 206 300 307 317 400 426 428 664
SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45
SEEN-BY: 460/58 712/848 902/26 2320/0 105 304 3634/12 5075/35
PATH: 2320/105 229/426