Belarusian hackers claimed responsibility for a significant cyberattack that disrupted Aeroflot’s internal network, affecting operations across Russia’s leading airline. The hackers stated they disabled approximately 7,000 internal systems, bringing flight scheduling, booking, and administrative functions to a halt. The attack highlights ongoing vulnerabilities within Aeroflot’s infrastructure, which reportedly relies on outdated operating systems.
Investigations reveal a troubling lack of cybersecurity updates within the airline. It has emerged that Aeroflot’s top executives, including the head of the airline, had not changed their passwords since 2022. Additionally, the company’s critical infrastructure reportedly runs on obsolete Windows XP and Windows Server 2003 platforms—systems no longer supported with security updates, exposing them to a range of cyber threats.
Cybersecurity experts have criticized Aeroflot for neglecting essential cybersecurity practices, which some believe made it an easy target for the hackers. The incident underscores the need for airlines and other critical infrastructure providers to modernize and strengthen their digital defenses. While Aeroflot has yet to release an official statement detailing the extent of the disruption, the breach serves as a stark reminder of the importance of robust cybersecurity measures in safeguarding critical services.