A pro-Ukrainian hacker group, Cyber Anarchy Squad, has taken credit for a significant cyberattack against the Russian information security firm Avanpost. The group claimed that they encrypted over 400 virtual machines, including both Linux and Windows systems, and most of the company’s physical workstations. Additionally, they reportedly destroyed more than 60 terabytes of data and leaked 390 gigabytes of sensitive information. This attack represents a substantial breach for Avanpost, which has been a key player in developing authorization and authentication systems for various Russian businesses.
Avanpost confirmed the incident over the weekend, describing it as a “serious cyberattack” but providing limited details on the extent of the damage or the specific data that was leaked. In response to the breach, the company has advised its customers, including Russian airports, a major water supply company, and telecom providers, to update their identification data and change passwords as a precautionary measure. Avanpost has urged its clients to disregard rumors and rely only on official updates for accurate information.
The methods employed by Cyber Anarchy Squad and the precise nature of the leaked data are still under investigation. The group has shared some of the allegedly stolen data on Telegram and the file hosting service Mega, alongside screenshots of internal communications purportedly from Avanpost. However, the authenticity of this leaked data has not been independently verified.
This attack is part of a broader pattern of cyber warfare involving pro-Ukrainian hackers targeting Russian entities. Last June, Cyber Anarchy Squad conducted a massive attack on Russian telecommunications company Infotel, which was confirmed by the company to have damaged its network equipment. Earlier in October, Russian security services detained an 18-year-old student allegedly involved with the group, highlighting the ongoing and complex nature of these cyber conflicts.
Reference:
