Ethical Hacking News
In a shocking turn of events, pro-Ukrainian hacktivists have claimed responsibility for breaching Russian cybersecurity company Dr. Web's systems, resulting in the theft of around ten terabytes of data. The breach is believed to be the latest in a series of attacks by groups supporting the Ukrainian war effort against Russia. While Dr. Web has denied the claims of data theft, evidence suggests that a significant amount of sensitive information was indeed stolen from their systems.
DumpForums, a pro-Ukrainian hacktivist group, claimed responsibility for breaching Dr. Web's systems on September 14. The breach resulted in the theft of around ten terabytes of data, including client databases and email records. DumpForums stated that they accessed Dr. Web's development systems for roughly one month and stole sensitive information. The group claimed to be supporting the Ukrainian war effort against Russia through DDoS attacks and leaking stolen information. Dr. Web has denied the data theft claims, but evidence suggests a significant amount of data was indeed stolen from their systems. The breach highlights the vulnerability of cybersecurity companies in Russia to cyberattacks and the growing threat posed by pro-Ukrainian hacktivists.
In a shocking turn of events, the pro-Ukrainian hacktivist group known as DumpForums has claimed responsibility for the recent breach of Russian cybersecurity company Dr. Web's systems. The breach occurred on September 14 and resulted in the theft of around ten terabytes of data, including client databases, email, Confluence, and other compromised servers.
The news was first broken by Sergiu Gatlan, a renowned cybersecurity reporter, who revealed that Dr. Web had confirmed the breach and was investigating its causes. However, what caught everyone's attention was DumpForums' statement, which claimed that they were behind the hack and had accessed Dr. Web's development systems for roughly one month.
According to DumpForums, they managed to gain access to various systems, including the corporate GitLab server where internal development and projects were stored, the corporate mail server, Confluence, Redmine, Jenkins, Mantis, RocketChat - systems where development was conducted and tasks were discussed. The group claimed that they stole a vast amount of data from these systems, which included client databases, email records, and other sensitive information.
But what is even more interesting about this breach is the motivation behind it. DumpForums stated that their efforts are focused on supporting "the Ukrainian war effort against Russia" through DDoS attacks and leaking information stolen from the Russian government and private entities. This is not the first time that pro-Ukrainian hacktivists have been involved in such activities, as ReliaQuest's Threat Research Team has documented DumpForums' activities since at least late May 2022.
The breach of Dr. Web's systems is a significant development in the world of cybersecurity, and it highlights the growing threat posed by pro-Ukrainian hacktivists. While some may view their actions as an act of war or a means to disrupt the Russian economy, others see them as a form of terrorism that undermines the global digital infrastructure.
It's worth noting that Dr. Web has denied the data theft claims made by DumpForums, and instead stated that the attack was "promptly stopped" and that customer information was not affected. However, this denial seems to be at odds with the reality on the ground, as evidence suggests that a significant amount of data was indeed stolen from the company's systems.
The breach also highlights the vulnerability of cybersecurity companies in Russia to cyberattacks. In June, pro-Ukrainian hackers Cyber Anarchy Squad breached the Russian information security firm Avanpost, claiming to have leaked 390GB of stolen data before encrypting over 400 virtual machines. This incident demonstrates that even major players in the cybersecurity industry can fall victim to such attacks.
In conclusion, the breach of Dr. Web's systems by pro-Ukrainian hacktivists is a significant development in the world of cybersecurity. While it may seem like a relatively small event compared to other high-profile breaches, it highlights the growing threat posed by groups with a clear agenda and the vulnerability of cybersecurity companies in Russia.
Related Information:
https://www.bleepingcomputer.com/news/security/recent-drweb-breach-claimed-by-dumpforums-pro-ukrainian-hacktivists/
https://www.npr.org/2023/11/21/1214170140/ukraine-hacktivists-cyber-russia-war
Published: Wed Oct 9 12:03:40 2024 by llama3.2 3B Q4_K_M
