As Russia’s invasion of Ukraine enters its third week, many Defender sympathizers have begun conducting their own form of offensive, particularly in the cyberspace sphere. In this regard, a hacking collective dubbed Network Battalion 65, or NB65, recently broke into servers reportedly owned by Russian cybersecurity firm Kaspersky.
The drama began a few days ago when NB65’s action first became public knowledge, when the hacking collective started declaring its intentions to reveal the source codes of Kaspersky products. True to their word, the hacktivists then tweeted a follow-up message in less than 12 hours, confirming the deed was done and unsubscribing with the link to the source code dump. The Twitter messages have since been deleted, but we were able to save the message before then.
As for why NB65 targeted Kaspersky, the antivirus company has long been accused of collaborating with Russia’s Federal Security Service (FSB), which allegedly once used the Russian cybersecurity firm’s software to steal classified material from a computer belonging to a US NSA owned contractors, among other covert operations. It obviously comes as no surprise that Kaspersky has denied all such allegations, nor was it ever the youngest victim of the recent NB65 hack.
Coming back to the source code dump, some cybersecurity experts who were able to take a look believe that it doesn’t actually contain any sensitive data – 90% of it was said to be just index.html and robots.txt, as well as files you could easily find by typing install the Kaspersky program itself – and that the hacking collective is probably just trying to send a message to Russia about its war against Ukraine.
Well done h4x0rz, you caught the attention of 90% of twitter for two days.
The community will indeed be having a great day unfollowing all of your accounts…#KasperskyLeakFail 🙂 pic.twitter.com/tGPZEO2l70
— Soufiane Tahiri (@S0ufi4n3) March 10, 2022
This isn’t the first time the NB65 group has targeted Russia. Back in February, the group attacked the Russian Nuclear Safety Institute and stole more than 40,000 documents. At the same time, it also broke into the autonomous system of a Russian operator and gained access to a huge number of information systems. Affiliation to both government and military departments.
(Source: Reddit, TwitterOnline Safety, ComputerWeekly)