Aeroflot, the flagship carrier of Russia, was reported by Russian independent outlet The Bell to have had its operations significantly disrupted in July due to the compromise of minor Moscow-based mobile app development firm Bakka Soft, which developed the airline's iOS apps and quality management systems, according to The Record, a news site by cybersecurity firm Recorded Future.While suspicious network activity was identified in January, Aeroflot had not bolstered contractor security ahead of the intrusion, which has been claimed by pro-Ukrainian hacking collective Silent Crow and the Cybrer Partisans of Belarus, said sources speaking with The Bell.Attackers had exploited Aeroflot's lack of two-factor authentication and Bakka Soft's remote access into its infrastructure to facilitate Active Directory compromise and the subsequent delivery of several malware tools. No details about the attack were shared by the Belarusian Cyber Partisans, while Bakka Soft has yet to acknowledge the breach.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
Related Terms
Attack VectorYou can skip this ad in 5 seconds