Russian Airline Cyberattack — Aeroflot & KrasAvia Threat Analysis Report — By CyberDudeBivash Date: September 19, 2025 (IST)
Executive Summary Russia’s flag carrier Aeroflot suffered a major cyber incident on July 28–29, 2025 , forcing widespread cancellations and delays while prosecutors opened a criminal case. Pro-Ukraine groups including Silent Crow and Cyber Partisans claimed responsibility, alleging long-term access, data theft, and destruction of servers. Reuters +2 Reuters +2 On September 18–19, 2025 , regional airline KrasAvia reported an “information systems” failure widely covered as a suspected cyberattack that disrupted ticketing and internal systems; Russian aviation also saw the St. Petersburg (Pulkovo) airport website knocked offline the same day, compounding sector-wide disruption. Bitdefender +2 The Record from Recorded Future +2 Risk: High for aviation/transport orgs: large-scale service disruption, potential data exposure, and prolonged recovery windows. Reuters What Happened (Timeline Highlights) Jul 28, 2025 — Aeroflot confirms “information system failure” amid mass ...