Russia Affected By Mysterious Nationwide Internet Outage

Uploaded on 2024-02-02 in INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

Russian residents s could not access their of websites on the country’s .ru domain for most of the day last Tuesday 30th January. This problem included the Yandex search engine, the VKontakte social media platform, the major state-owned bank Sberbank and a number of news outlets.

The issue was apparently caused by an IT issue with the .ru domain’s global Domain Name System Security Extensions, or DNSSEC. It appeared to be unintentional, unlike other recent blackouts of Russian Internet services, which some reviewer said was  government action.

DNSSEC is a group of tools that adds security to the naming system and that translates human-readable web addresses into computer-friendly IP addresses. DNSSEC also verifies the authenticity of a response from a DNS server, protecting it against IP address spoofing, which is often used by hackers in their attacks. Most complaints about Internet down-time originated from Moscow, St. Petersburg, Tatarstan, Sverdlovsk, and Novosibirsk regions, according to Russian media. 

In Moscow, local residents said they couldn't pay with banking apps and access state services. Internet users abroad also couldn't access numerous Russian websites. Cash registers linked to Sberbank, which operates the largest retail payments system, failed.

The .ru outage affected hundreds of websites and Russian tech media published that the problem was caused by an incorrect DNSSEC zone signature. This cryptographic signature is applied to the DNS zone data of a specific domain to ensure the integrity and authenticity of the information. Following the initial four hours of outage the Russia’s Digital Ministry announced that that the problem had been solved, and access to most websites was working again. “The issue may continue for some time until the updated data is distributed throughout the domain name system," the statement said.

Earlier in January 2024, Russia experienced a social media black-out likely at the direction of  by the state Internet regulator, Roskomnadzor. Also this had  happened in a remote Russian region and was likely connected to protests there, as local authorities wanted to check how shutting down messengers could impact the protestors. The Russian 

Anonymous sources said that the Russian media outlet Kommersant that this time the outage was either a mistake made by the DNSSEC zone administrator, the Russian coordination centre for .ru domains, or its contractors.

Russia’s Net Freedoms Project said that the latest outage could be an attempt by the Kremlin to test a National Domain Name System (NDNS) aimed at isolating the Russian Internet from the rest of the world. Russian Internet regulators have said that subscribers to NDNS did not experience outages on Tuesday 30th January. 

Andrey Vorobyov, director of the Domain Coordination Centre, confirmed their dedication to resolving the technical problem. ’We are working on a technical problem, I can’t talk now,’ said Vorobyov. The Ministry  of Digital Development insisted: “In the near future, access to sites in the .ru zone will be restored. ’A technical issue has occurred affecting the .RU zone associated with the global DNSSEC infrastructure.’

On the same day as the Russian Internet shutdown, Ukraine’s Defense Intelligence (HUR) said that it taken out a server used by Russia’s defence ministry, disrupting communications for some of Moscow’s military units. “As a result of the cyberattack, the exchange of information between the units of the Russian Ministry of Defence, which used the mentioned server located in Moscow, was suspended,” HUR said. The Kremlin’s own site was temporarily hit as were other Russian government sites.

Russia Ministry of Digital Development:    RUPOR:   The Record:   Xa6p:    Kommersant:   NetFreedoms:  

Ukraine Defence Ministry:     Security Boulevard:    Bloomberg:      Metro:     Image: Behnam Norouzi

You Might Also Read: 

Ukraine’s Cyber Conflict With Russia:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Fast Forward - Technology Developments By 2040
Lush Employee Data Stolen »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

iboss Network Security

iboss Network Security

The iboss cloud is designed to deliver Network Security as a Service, in the cloud, using the best malware engines, threat feeds and log analytics engines.

Research Institute in Science of Cyber Security (RISCS)

Research Institute in Science of Cyber Security (RISCS)

RISCS is focused on giving organisations more evidence, to allow them to make better decisions, aiding to the development of cybersecurity as a science.

OASIS Open

OASIS Open

OASIS Open is where individuals, organizations, and governments come together to solve some of the world’s biggest technical challenges through the development of open code and open standards.

Seceon

Seceon

Seceon OTM, is a cyber security advanced threat management platform that visualizes, detects, and eliminates threats in real time.

Carson & SAINT

Carson & SAINT

Carson & SAINT is an award-winning consulting firm with deep experience in cybersecurity technology, software, and management consulting.

Spire Solutions

Spire Solutions

Spire Solutions is the Middle East & Africa region’s leading cybersecurity solution provider and value-added distributor (VAD).

Spanish Network of Excellence on Cybersecurity Research (RENIC)

Spanish Network of Excellence on Cybersecurity Research (RENIC)

RENIC is a membership based sectoral association that includes research centers and other agents of the research cybersecurity ecosystem in Spain.

Monster Jobs

Monster Jobs

Monster is a global leader in connecting people to jobs, wherever they are. Monster covers all job sectors including cybersecurity in locations around the world.

FireCompass

FireCompass

FireCompass SAAS platform helps CISOs & Security Teams in continuous risk assessment by mapping your attack surface and knowing the “unknown unknowns”.

Componolit

Componolit

Componolit GmbH is a highly specialized company with a strong emphasis on trustworthy software, component-based systems and formal verification.

Herzing College

Herzing College

Herzing College Ottawa offers an accelerated 12-month Cybersecurity Specialist training program. This program is developed by industry experts and based on leading IT security certifications.

SecOps Group

SecOps Group

SecOps Group is a boutique cybersecurity consultancy helping enterprises identify & eliminate security risks on a continuous basis.

Memcyco

Memcyco

Memcyco is a provider of cutting-edge digital trust technologies to empower brands in combating online brand impersonation fraud, and preventing fraud damages to businesses and their clients.

Jera IT

Jera IT

Jera IT provide fully managed IT support, cybersecurity services, telecoms systems, and IT strategy consultancy to businesses based in Aberdeen and the surrounding area.

CNF Technologies

CNF Technologies

CNF Technologies is an award-winning cyber company providing technology-focused research and development to commercial, federal, and Department of Defense clients.

Yokai

Yokai

Yokai is a secure, distributed platform for data communication with enhanced security features tailored for classified environments such as finance, defence, healthcare, cybersecurity, and more.