A major cybersecurity incident has occurred in Russia, with the hacking of a telecommunications company called Dozor. The company provides services to various sectors, including power grids, oil fields, and even the Russian military and Federal Security Service (FSB). The attack was carried out by unknown threat actors who claimed responsibility through a post on a Telegram channel called Dozor.
According to the post, the hackers were able to take down satellite terminals, reboot switches, and destroy data on the servers. This indicates a highly sophisticated and coordinated attack on the company’s infrastructure. The motive behind the attack is still unclear, but the extent of the damage suggests that it was a targeted and deliberate act.
It is worth noting that the Wagner Group, a Russian mercenary group led by Yevgeny Prigozhin, has been implicated in the attack. This group gained notoriety when its members marched towards Moscow after Prigozhin had a falling out with the Russian government. The Wagner Group is also known for releasing ransomware that encourages users to join PMC Wagner, rather than asking for money.
The connection between the Wagner Group and the Dozor hack is not entirely clear, but both events seem to be related. Several unrelated websites were also defaced, with messages expressing support for the Wagner Group. This suggests that the same hacker group was responsible for both the Dozor hack and the defacements.
The impact of the hack on Dozor has been significant. The company’s internet connection has been disconnected, and it remains inaccessible as of the time of this writing. Internet monitoring services have confirmed the outage, and the IODA project, which monitors internet outages globally, reported that the network has been down since Wednesday. This prolonged outage disrupts Dozor’s operations and raises concerns about the company’s ability to recover and secure its systems.
In addition to the service disruption, the hackers also released a zip file containing hundreds of files related to the connections between the FSB and Dozor. The authenticity of the attack was further confirmed with the publication of passwords used by Dozor employees to verify with FSB representatives. These passwords change every two months, indicating that the hackers had deep access to the company’s systems.
The motive behind the attack and the involvement of the Wagner Group are still subjects of speculation. The Wagner Group has not been previously associated with such cyberattacks, leading to suspicions about their involvement. However, the exact reasons behind the attack and the group’s connection to it remain unclear.
This incident highlights the growing threat of cyberattacks and the vulnerability of critical infrastructure systems. The attack on Dozor, a company providing essential services to various sectors, demonstrates the potential consequences of such breaches. It also underscores the need for organizations to prioritize cybersecurity measures and invest in robust defenses to protect against such attacks.
As investigations into the Dozor hack continue, it is crucial for authorities to identify the perpetrators and hold them accountable. Additionally, organizations must learn from incidents like this and take proactive steps to enhance their cybersecurity posture. Failure to do so could have severe consequences, not only for the targeted entities but also for the overall security and stability of critical infrastructure systems.