A powerful and effective cyberattack on the Russian Federal Air Transport Agency (Rosaviatsia) infrastructure that took place on Saturday morning has erased all documents, files, aircraft registration data and mails from the servers. In total, about 65 terabytes of data was erased. The news became known on Monday morning, the agency’s official website (favt.ru) went also down.
Officially, the Russian Federation does not confirm anything but blamed it on temporary lack of access to internet and a malfunction of the electronic document flow system of Rosaviatsia that they switched over to a (pen and) paper version: information exchange will be carried out via AFTN channel (for urgent short message) and postal mail.
It is alleged that the attack occurred due to poor performance of contractual obligations by company LLC “InfAvia”, which operates the IT infrastructure of Rosaviatsia. “The prosecutor’s office and the FSB have been sitting at Rosaviatsia since Saturday,” said a person familiar with the case.
The authorities are now looking for a backup, if any. The Aviation Herald wrote that no backup of these data exists due to lack of funds allocated by Russia’s Ministry of Finance.
Rosaviatsia blames the success of the hacker attack (presumably carried out by the Anonymous Hacking Group) onto their contractor hired to maintain their IT-structure.
Anonymous dismissed the allegations, they said that they would never endanger the lives of civilians.
The site favt.ru works from inside Russia, there are no problems with the speed of its work. But if you look at the site from outside Russia, it doesn’t seem to work. But this is the result of filters. I see such filters on other sites, for example rbc.ru . Most likely, Russian providers restrict traffic to important Russian sites outside of Russia. It is possible that the site worked before (and was not down)
So Perlover, from your end the website favt.ru still works, can you confirm ?
There is a subdomain that is up, most likely redirects from another server. Point at the truth of the story.
I also read it us backup existed but within the same system or parallel virtual server, getting access to one gave them access to the other, all deleted.
Here ks the subdomain https://bvs.favt.ru/ and you can see that its links are not working. Doesnt look like filters, just not there!!
[…] kolei serwis Aviation24, pocz?tkowo Federacja Rosyjska oficjalnie nic nie potwierdzi?a, tylko zrzuci?a win? na czasowy […]