In November 2023, Ukraine's intelligence service operating under the Defense Ministry claimed they had hacked Russia's Federal Air Transport Agency, 'Rosaviatsia.' In the attack, the hackers leaked data reflecting a state of decay caused by international sanctions and lack of spare parts. Bill Toulas Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks. According to announcements made on X and on Telegram, the hackers claimed to have infiltrated Aeroflot's IT infrastructure for over a year, mapped it extensively to pinpoint all valuable resources, and then "destroyed" it. During their alleged access to those systems, they say they exfiltrated all databases from flight history and employee workstations (including of top executives), wiretapping servers containing phone call recordings, and personnel monitoring systems. Aeroflot, Russia's flag carrier, has suffered a cyberattack that resulted in the cancellation of more than 60 flights and severe delays on additional flights. The latter are known for previous attacks on the Belarusian Railway, the country's state-owned railway company, that actively supported the movement of Russian military equipment into Ukraine at the time. Though the company has not confirmed any data destruction or compromise, its operational status reflects severe technical problems that indicate a cyberattack took place. On the day of the action, the hacktivists claim to have wiped 7,000 physical and virtual servers hosting 12TB of databases, 8TB of Windows Share files, and 2TB of corporate email.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Tue, 29 Jul 2025 17:55:13 +0000