Ukrainian cyber operatives have executed a series of targeted attacks against Russian internet service providers, resulting in significant data breaches and operational disruptions. The affected entities include Annex.pro, Obltelecom, CROSS-T, and Delfin Telecom.
Annex.pro: Operating in Novorossiysk, Annex.pro promotes “high-quality and truly unlimited Internet.” Ukrainian hackers infiltrated their billing systems, extracting client information and compromising their asterisk database. Additionally, they disrupted network operations by tampering with servers running MySQL and PostgreSQL databases, and manipulated Mikrotik devices to further destabilize services.
Obltelecom: Serving Moscow and its surrounding regions, Obltelecom offers internet, television, and telephony services. Hackers accessed data from the Platex ACP and compromised 18 servers, leading to potential service interruptions and unauthorized access to customer data.
CROSS-T: As a major communications operator in the Pushkin district, CROSS-T’s service databases were breached, resulting in the extraction of sensitive information. Despite attempts by system administrators to counteract the intrusion, 12 servers were effectively compromised, indicating substantial lapses in their cybersecurity measures.
Delfin Telecom: Established in 2004 and licensed in the Moscow region, Delfin Telecom shares billing systems with CROSS-T. Hackers exploited this connection to access and exfiltrate data, further exposing vulnerabilities within interconnected network infrastructures.
These coordinated cyberattacks underscore significant deficiencies in the cybersecurity protocols of Russian ISPs. The breaches not only jeopardize the personal data of clients and employees but also threaten the stability of internet and television services across various regions. The persistent and escalating nature of these intrusions highlights the urgent need for enhanced security measures to safeguard critical digital infrastructure.
For a comprehensive list of recent cyberattacks and data breaches, including those affecting telecommunications companies, refer to Intellizence’s report on major cybersecurity incidents.
The downloaded good can be found here:
DUMP mega
DUMP gofile
Archive password: HNY_CAS
