The website of the Mir payment system operator was subject to a cyber attack – Kommersant
[ad_1]
A hacker attack was carried out on the operator of the Mir payment system, the National Payment Card System (NSCP), a source in the IT market told Kommersant. As of 22:00 Moscow time on October 30, the company’s website was unavailable. The archive contains a copy of the main page of the NSPK with a link to the website of the hacker group DumpForums. The NSPK denies a data leak.
The press service of NSPK told Kommersant that the site was “developed and maintained by a third-party contractor”: “It is only a business card with information about the company’s activities and does not contain any confidential data, and is also not related to the payment infrastructure.”
It is impossible to gain access to any of the company’s systems from the site, the company assured, clarifying that NSPK servers and data centers do not have access to the Internet. “The processing of all payments by bank cards and transactions through SBP is carried out by NSPK as usual,” a company representative assured.
A Kommersant source in the IT market confirmed that the hacking of the site did not affect the operation of the NSPK Fast Payment System (FPS) or the operation of the payment system. According to him, the attackers did not gain access to sensitive information, since it is impossible to do this “purely physically” due to several protection loops.
On the main page of the NSPK website after the hack it was reported: “We welcome you to our new website, which our partners DumpForums kindly produced for us practically free of charge: we paid with all your personal data, since this is the only and lasting value that we had left.”
DumpForums is a group of hackers. In its Telegram channel, DumpForums reports: “We downloaded a lot of interesting information from the servers of the Mir payment system, had a great time on their internal network and are now ready to announce the hacking of the largest payment operator.” The group also thanked “colleagues from the Ukrainian Cyber Alliance” for their help.
In the text of the message on the NSPK website, the hackers mocked IT products created in the Russian Federation as part of import substitution. The message said that “in connection with Russia’s exit from the ruble zone,” the NSPK invites Russians to use cowrie shells for payments. Images of these shells accompanied the hackers’ message on the NSPK website. Previously, the DumpForums group reported that the websites of Russian companies were hacked, including Datadvance, the tour operator Intourist, the insurance company SOGAZ Life, the Gosuslugi service database, and the online pharmacy Vita.ru.
[ad_2]
Source link
