Ukrainian Hackers Attack Russian Financial Services

Russia's leading electronic trading platform, Roseltorg has been attacked by a pro-Ukraine hacking group called Yellow Drift.

Roseltorg is one of the largest electronic trading operators selected by the Russian government to conduct public procurement, including contracts in the defence and construction industries. The platform also offers tools for electronic document management and procurement planning.  

In a  statement, Roseltorg disclosed that it had been targeted by "an external attempt to destroy data and the entire infrastructure of electronic trading."  

Roseltorg stated that all data and infrastructure affected by the recent attack had been fully restored, and trading systems are expected to resume operations shortly. Yellow Drift  have claimed that they were responsibile for the attack on Roseltorg, stating they had deleted 550 terabytes of data, including emails and backups.

 As evidence of their exploit the hackers published screenshots from the platform’s allegedly compromised infrastructure on their Telegram channel.“If you support tyranny and sponsor wars, be prepared to return to the Stone Age," the hackers said.  

The cyber attack on Roseltorg is  affecting clients who rely on the platform’s operations, including government agencies, state-owned companies and suppliers.  Numerous users of the platform have expressed concerns,  complaining about potential financial losses and delays in the procurement process.  

Roseltorg said in a statement that once access to the trading systems is reinstated, all deadlines for procedures, including contract signings, will be automatically extended without requiring any requests from users.  

According to local reports, Roseltorg serves some of the largest Russian corporations, including oil company Lukoil, digital service provider Rostelecom and diamond mining company Alrosa, as well as government agencies including the Ministry of Defence and internet regulator Roskomnadzor.  

Roseltorg is one of several Russian companies targeted by pro-Ukraine hackers this month. Recently a group of hackers with unknown ties claimed responsibility for breaching Rosreestr, a Russian government agency responsible for managing property and land records.  

  • Another hacker group, known as the Ukrainian Cyber Alliance, also claimed responsibility for a hack on the Russian Internet provider Nodex, which has confirmed the attack.
  • In a different exploit, the Ukrainian hacker group known as Cyber Anarchy Squad claims to have attacked a  Russian technology  company Infobis, which develops systems for planning, monitoring, and accounting of agricultural work.  

The hackers claimed to have exfiltrated 3 TB of data and destroyed part of the company’s infrastructure although Infobis has not commented on the alleged attack. 

Yellow Drift's asserts that it destroyed 550 TB of data as a result of their exploit, while Roseltorg say that it has recovered of all the missing data and is working to restore its trading systems and operations. 

Roseltorg   |   Yellow Drift   |    Record   |   CNews   |   SCWorld   |   Euromaidan

Image: Ideogram

You Might Also Read: 

 

 

 

« Remote Deletion Of Malware Enforced On Thousands Of Computers 
How SASE Fits Into The Modern Cybersecurity Landscape »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Roka Security

Roka Security

Roka Security is a boutique security firm specializing in full-scale network protection, defending against advanced attacks, and rapid response to security incidents.

Titania

Titania

Titania provide network security and compliance software. Find your Network Security gaps before hackers do with our security & compliance tools.

TZ-CERT

TZ-CERT

TZ-CERT is the National Computer Emergence Response Team of Tanzania.

Onspring

Onspring

Onspring is the cloud-based platform of choice for governance, risk and compliance (GRC) teams and business operations experts across multiple industries.

WizNucleus

WizNucleus

WizNucleus develops, markets and supports a software platform (Cyberwiz-Pro) that enables Critical Infrastructure enterprises to ensure the future state of their cybersecurity and remain compliant.

Aiuken Cybersecurity

Aiuken Cybersecurity

Aiuken is an international IT Security company, focused on communications and IT technologies, specialised in Security and Cloud Services solutions with high added value.

Rippleshot

Rippleshot

Rippleshot is a fraud analytics firm that detects mass card compromises faster, allowing issuers to execute more proactive fraud detection strategies.

Wynyard Group

Wynyard Group

Wynyard Group is a niche, technology-driven company specializing in Integrated Border Security solutions for enhanced public safety.

HackControl

HackControl

HackControl services include penetration tests, security audits, block chain audits and brand and anti-phishing protection.

SyferLock Technology Corp.

SyferLock Technology Corp.

SyferLock is an innovative provider of next-generation authentication and security solutions.

Nucleon Security

Nucleon Security

Nucleon Endpoint Detection and Response EDR is the most effective way to protect the value created by your organization against any threat.

Astrix Security

Astrix Security

Astrix enables security teams to instantly see through the fog of connects and detect redundant, misconfigured and malicious third-party exposure to their critical systems.

Commission Nationale de l'Informatique et des Libertés (CNIL)

Commission Nationale de l'Informatique et des Libertés (CNIL)

The mission of CNIL is to protect personal data, support innovation, and preserve individual liberties.

B&L PC Solutions

B&L PC Solutions

B&L PC Solutions deliver top cyber security services on Long Island and New York city to protect businesses from evolving online threats.

Internet Watch Foundation (IWF)

Internet Watch Foundation (IWF)

Since the early days of the internet, our job has been to help child victims of sexual abuse by hunting down and removing any online record of the abuse.

IndoSec

IndoSec

IndoSec is an annual cybersecurity summit that powers an in-person gathering of cybersecurity leaders from Indonesia’s major corporations, leading businesses and key government entities.