Russia’s national airline, Aeroflot, has cancelled dozens of flights after pro-Ukrainian hackers claimed an attack on the carrier’s IT systems. The hacking group Silent Crow said it carried out the attack with the help of a Belarusian group Cyberpartisans, claiming its “prolonged and large-scale operation… completely destroyed” Aeroflot’s IT systems.
According to Aeroflot, more than 40 flights were cancelled, mostly within Russia, but also including routes to Belarus and Armenia. The Kremlin described the situation as “worrying”. The airline stated that an issue with its information system had also led to widespread delays. Silent Crow threatened to release “the personal data of all Russians who have ever flown Aeroflot”, concluding their post with “Glory to Ukraine! Long live Belarus!”.
The Belarusian group Cyberpartisans said on its website: “We are helping Ukrainians in their fight with the occupier, carrying out a cyber strike on Aeroflot and paralysing the largest airline in Russia.” Anton Gorelkin, a Russian MP, emphasized the digital front in the conflict, stating: “We must not forget that the war against our country is being waged on all fronts, including the digital one”.
The Russian prosecutor’s office confirmed a failure in Aeroflot’s information system due to a hacker attack and opened a criminal investigation. While the BBC couldn’t verify Silent Crow’s claims, the incident highlights the growing threat of cyberattacks in the conflict between Russia and Ukraine. These hacking groups often exaggerate their successes, making it challenging to determine the actual impact of their attacks.
The disruption has caused significant inconvenience to passengers, with many flights grounded and schedules affected. Aeroflot urged impacted passengers to collect their belongings and leave the airport premises. The airline is working to minimize the impact on schedules and restore normal operations as soon as possible.
Silent Crow claimed to have deeply penetrated Aeroflot’s corporate network, destroyed approximately 7,000 servers, and taken control of employees’ personal computers. The group warned that they would soon begin releasing sensitive passenger data. The attack allegedly involved targeted phishing and zero-day exploits, allowing the hackers to gain administrative control over critical systems.
This cyberattack marks a significant escalation in the digital front of the Russo-Ukrainian conflict. With Aeroflot serving millions of passengers annually, the incident raises concerns about aviation resilience and cybersecurity in the region. The Kremlin’s response underscores the need for robust cybersecurity measures to protect against such threats.