Rostelecom, a major Russian telecommunications company, is currently investigating a suspected cyberattack targeting one of its contractors. The contractor is responsible for maintaining Rostelecom’s corporate website and procurement portal, both of which were reportedly compromised by hackers. The group behind the attack, Silent Crow, has claimed responsibility for leaking thousands of customer emails and phone numbers. While Rostelecom initially reported that no highly sensitive data was exposed, it has taken precautions by advising users to reset their passwords and enable two-factor authentication.
The attack on Rostelecom is the latest in a series of cyber incidents targeting prominent Russian organizations.
The group Silent Crow has been active in publishing data dumps from various breaches, including previous claims against a Russian government agency and a subsidiary of Alfa-Bank. Unlike many other hacker groups, Silent Crow does not demand ransom from victims but instead releases data publicly, often through a private Russian-language Telegram channel. The group’s motives remain unclear, though its activities have raised significant concerns about cybersecurity in Russia.
Rostelecom has confirmed that its investigation is ongoing and is focused on determining what data was compromised and whether it is directly tied to the company. The Russian Ministry of Digital Development has stated that the breach did not affect the state services portal and that no sensitive data from Rostelecom’s subscribers was exposed. Despite this, the company is taking the breach seriously, working to enhance its security measures, and ensuring that affected users are informed and protected against further potential risks.
This cyberattack is part of a broader wave of hacking incidents in Russia, which have involved various hacker groups, some of which are suspected to have connections to Ukraine. In recent weeks, other Russian companies and state agencies, including Roseltorg and Nodex, have been breached, further underscoring the vulnerability of Russian businesses and government entities to cyberattacks. As a result, the local cybersecurity environment is under increasing scrutiny, and the risks posed by cyber threats are being taken more seriously.
Reference: