14 DAY TRIAL // Hacktivists of the Russian Cyber Command (Rucyborg) group continue to target Russia. Their latest attack has been aimed at the Chinese embassy in Moscow.
With this latest leak, the hackers want to demonstrate that China has provided executives of Russian aluminum giant Rusal with equipment containing backdoors. The devices in question were installed on the systems of Ukrainian telecoms company Intertelecom in an effort to spy on the company.
The hacktivists claim that Rusal delivered the equipment to Altron, a Ukrainian communications and security systems company whose list of customers includes several Ukrainian government agencies and high-profile companies. Rusal is said to have violated the China Export agreement in the process.
Russian Cyber Command alleges that Viktor Yanukovych, the former president of Ukraine, and Nikolay Malomuzh, the ex-head of service of foreign intelligence Ukraine, masterminded the operation.
“Next leak we deliver the whole package of docs revealing the secrets of cooperation between Malomuzh and Russian RUSAL executives puppettiers of FSB,” the hackers wrote in a statement on Cyber Guerilla.
“Nikolay Malomuzh of Ukraine has masterminded with Rusgazneft, Mizgirev Sergey of that co. has protectorate of Malomuzh son Jaroslav and gave him a position in Salans international law firm in Kiev over the protectorate of Skolkovo Valeria Pavlyukovskaya, a malicious plot to control Western Ukraine by contracting Altron executives to install backdoored equipment into Intertelecom infrastructure,” they added.
“Chinese found out about this only when their intelligence in Ukraine has informed them of Malomuzh being involved with Yanukovich company Tantalit and masterminded 20th of February shooting of Maidan activists.”
This first leak, which the hacktivists claim is the first in a series of seven releases, comprises information on Intertelecom’s infrastructure, including details on 100,000 customers.
Russian Cyber Command claims that it has stolen the information from the Chinese embassy in Moscow after installing a Remote Access Trojan (RAT) with the aid of spear phishing emails.
“As our attack on BRICS countries [ Brazil, Russia, India, China and South Africa] happen to deliver substantial results and we continue undermine the integrity of Vladimir Putin’s financial and business agendas to rearrange NWO,” the hackers said.
A preview of the data leak, containing scanned copies of various documents written in Chinese and Russian, has been published on Imgur.
Previously, the group targeted Russian defense export company Rosoboronexport, IT security company SearchInform, and the Russian Industrial Investment Fund. Data has been leaked from the networks of each organization.