Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Hacktivists Leak Data Allegedly Stolen From Russian Energy Giant Transneft

Roughly 79 gigabytes of emails allegedly stolen from Russian state-controlled oil pipeline company Transneft emerged on a known leaks hosting website.

The largest pipeline company in the world, the Moscow-based Transneft transports oil and oil products in Russia and the CIS countries, operating more than 70,000 kilometers of pipelines.

Roughly 79 gigabytes of emails allegedly stolen from Russian state-controlled oil pipeline company Transneft emerged on a known leaks hosting website.

The largest pipeline company in the world, the Moscow-based Transneft transports oil and oil products in Russia and the CIS countries, operating more than 70,000 kilometers of pipelines.

The leaked data is said to have been exfiltrated from the OMEGA Company, the multi-discipline research and development department of Transneft.

The Anonymous hacktivists who took responsibility for the attack posted the data on leak hosting website Distributed Denial of Secrets. They claim to have hacked Transneft in response to Russia’s invasion of Ukraine.

The leaked data contains email messages apparently originating from the accounts of multiple Transneft employees, along with attached files, including invoices, product shipment information, and more.

The emails reflect some of the most recent activity associated with the accounts, and some of the messages include information related to the sanctions that the United States and the European Union have announced against Russia since February 25, shortly after it launched its invasion of Ukraine.

[READ: Russia-Ukraine: Threat of Local Cyber Operations Escalating Into Global Cyberwar]

“This dataset was released in the buildup to, in the midst of, or in the aftermath of a cyberwar or hybrid war. Therefore, there is an increased chance of malware, ulterior motives and altered or implanted data, or false flags/fake personas. As a result, we encourage readers, researchers and journalists to take additional care with the data,” a note on the leak hosting website reads.

Furthermore, Distributed Denial of Secrets also notes that the source of the data has dedicated the leak to Hillary Clinton, who in February encouraged hackers to launch cyberattacks against Russian entities.

The Ukrainian government too encouraged hackers to target Russia, and even gathered its own army of hackers to take cyber-action against the invaders.

Right after Russia started its invasion, Anonymous announced full support for Ukraine, and shortly after it claimed responsibility for cyberattacks on the websites of state news agencies TASS and RIA Novosti.

Members of the hacktivist movement have continued to target Russian entities, claiming to have hit Russian intelligence, government organizations and private companies. On Monday, they issued a warning to tens of international companies to cease operations in Russia or face cyberattacks.

Related: Germany Warns Against Russia’s Kaspersky Anti-Virus Software

Related: Russia Blocks Access to Facebook Over War

Related: Ukrainian Security Researcher Leaks Newer Conti Ransomware Source Code

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Cybercrime

Cybercriminals earned significantly less from ransomware attacks in 2022 compared to 2021 as victims are increasingly refusing to pay ransom demands.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.