Источник: "Киберпартизаны"
The hacktivist group Cyber Partisans has claimed responsibility for hacking the computer network of the Khimvolokno enterprise, a branch of Grodno Azot.
“The Khimvolokno enterprise was selected as a target for an attack against the Lukashenka regime because the plant regularly circumvents European Union sanctions and supplies technical polyamide yarn to Russia. There, this material is used to produce military-purpose fabrics, including body armour and combat helmets,” the Cyber Partisans said.
The hacktivists said the operation took about a day and resulted in full domain administrator-level control.
“On the night of February 25 to 26, we penetrated the most protected segment of the IT infrastructure — the data centre. All eight servers were destroyed, including dozens of the most critical virtual machines hosted on them.
We disabled domain controllers, servers, virtual machines and workstations. Some devices are now loaded with ‘cyber bombs’. In total, access was gained to around 1,000 machines, as well as part of the servers involved in technical processes,” the group reported.
As a result of the attack, office operations, accounting, marketing and sales, logistics, and technical and administrative processes were disrupted. ERP systems and databases, corporate email, the Directum document management system, backup systems, as well as security and video surveillance systems were affected.
Some of the data has been irretrievably lost, and system recovery will take weeks, the Cyber Partisans said.