In Germany, “pro-Russian hackers” were accused of cyber attacks

The “pro-Russian hacker group” NoName057(16) could attack the website of the German railway company Deutsche Bahn, writes Spiegel, citing a confidential report from the German government.

In the Telegram channel NoName057(16) on November 1, in response to information that Germany promised to additionally supply Ukraine with 14 Leopard 2A4 tanks in 2024, appeared messages “We are going to destroy German Internet portals” and “We continue to destroy the German Internet infrastructure.”

After this, according to the publication, Deutsche Bahn’s corporate website “repeatedly became unavailable for short periods of time.” Also, according to a confidential report from the Federal Ministry of the Interior, the National Information Technology Situation Center found that the list included sites belonging to the German Ministry of Defense and other departments.

It is noted that, unlike similar “pro-Russian groups” such as KillNet, the people behind NoName057(16) do not use their own botnet. Instead, “hacktivists” provide a tool for DDoS attacks and encourage sympathizers to download it and use it against specified targets for a reward.

On September 30, Bloomberg, citing a report from the US Office of Personnel Management reportedthat a “Russian-speaking hacker group” gained access to the email addresses of about 632,000 federal employees of the US Departments of Defense and Justice during a large-scale attack on the MOVEit system on May 28 and 29. The hacker group Clop, or Cl0p, claimed responsibility for the attack; more than 2,500 organizations were affected by their actions. Among the victims is government services provider Maximus Inc. and the Louisiana Department of Motor Vehicles.