Massive 7.5TB breach reveals secret Russian IT projects

Hacktivists seize a trove of FSB data after breaching the networks of a major contractor

A computer with data overlaid onto the Russian flag

Hackers breached the server of a major contractor working on behalf of the Russian intelligence service before stealing 7.5TB of sensitive data and sharing this freely with other hackers and journalists.

Attackers infiltrated the company network of SyTech on 13 July, according to BBC Russia, and began a process of copying data while deleting masses of it. Much of this included detailed information about sensitive government IT projects commissioned by the Federal Security Service of the Russian Federation (FSB).

There at least 20 non-public SyTech projects detailed in the trove of documents stolen, stretching back to 2009. These include Nautilus-S, in which Tor traffic is de-anonymised with the help of rogue Tor servers, and Mentor, which involves monitoring and searching emails that sit on servers belonging to Russian organisations.

Nadezhda, meanwhile, is dedicated to creating a programme that accumulates and visualises information about how the Russian portion of the internet is connected to the wider global web.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Following the hack, the homepage of the company's website displayed a comical yoba-face' image which the hackers installed to demonstrate they had breached SyTech's systems. Hacktivists and cyber criminals often leave such images as a calling card following a successful attack on an organisation's networks.

The attackers published screenshots of the stolen data on a Twitter account and shared the multi-TB trove of information with Digital Revolution, a similar group that breached another FSB contractor last year.

This second hacking collective describe themselves as "digital revolutionaries" and have a track record of infiltrating official systems in an effort to undermine the government. After being handed the most recent collection of documents, for example, Digital Revolution shared the entire trove with journalists.

Since activity peaked around a decade ago with organisations like Anonymous, hacktivism has not been as widespread a tool for political and social influence as it once was, in the West particularly.

The Syrian Electronic Army, for example, is among the most prominent groups in recent history and was formed in 2011 as a pro-Assad hacking group that launches cyber attacks against political opposition groups and media organisations.

The Russian state itself has been at the centre of several hacking storms, both as aggravator and victim, with the US, for example, accusing intelligence services of orchestrating hacks against the democratic process.

Advertisement - Article continues below

In May, meanwhile, sensitive data belonging to 2.25 million Russian citizens, including passport information, was found to be exposed online through misconfigured government servers. These included the details of high-ranking government officials.

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/hardware/laptops/354533/dell-xps-13-new-9300-hands-on-review-chasing-perfection
Laptops

Dell XPS 13 (New 9300) hands-on review: Chasing perfection

14 Jan 2020
Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020