Tuesday, July 29, 2025
Big reportage An attack on Russian carrier Aeroflot has forced it to cancel more than 100 flights and seriously delay its network. And this compromise, which was reportedly done by two separate hacker groups, was responsible for causing major disruptions to the domestic as well as international services.
Silent Crow and Belarus Cyber-Partisans Claim Responsibility
The computer hacking, which occurred on Monday, July 28, 2025, attacked Aeroflot computer systems, causing the airline to ground flights and alert passengers about possible flight delays. Russian officials said the attack was carried out by two hacker groups, Silent Crow, from Ukraine and the Belarus Cyber-Partisans, an organization that opposes the Belarusian government under President Alexander Lukashenko.
Both groups had previously been known for cyberattacks against Russian targets, but this was one of the biggest and most disruptive to date. The hijackers used flaws in Aeroflot’s IT network to bring all of its computer systems to a standstill.
Mass Cancellations and Flight Delays
The cyberattack prompted Aeroflot, the flagship Russian airline, to cancel more than 100 flights. Most of the affected flights were domestic, but some international flights, including to Belarus, Armenia and Uzbekistan, also were impacted. Hundreds of passengers were stuck at Moscow’s Sheremetyevo International Airport — home to Aeroflot — due to the technical failure.
The problem was compounded by similar disruptions at the Russian flag carrier’s units Rossiya and Pobeda. Flight schedules were badly disrupted and passengers were forced to endure the long queues at the airport.
The Strike’s Strategic Impact
The hacker group Silent Crow boasted of breaching Aeroflot’s corporate network a year before the attack. They reportedly lifted sensitive information, like customer details, internal messages and surveillance footage of the airline’s employees. The hacking group had already destroyed a significant portion of the data or made it no longer accessible, and this would result in long-term damage that would likely cost millions of dollars to remedy, the group warned.
The attack was conveyed in a message appeared on Silent Crow’s Telegram channel. The group added that the personal information of Aeroflot’s customers had been breached and that they would provide further details in the coming days. While the reports are unverified, they have caused major fears among both Russians and Russian officials.
The Role of Belarus Cyber-Partisans
Another major participant in the attack is the Belarus Cyber-Partisans, who are anti-Lukashenko officials. The group has been linked to a number of high-profile cyberattacks in the past, including a penetration of the network of Belarus’ KGB security agency in 2024. A group coordinator, Yuliana Shametavets, said in a statement to The Associated Press that the Belarus Cyber-Partisans were responsible for the attack on Aeroflot and that the goal was to deal a “crushing blow” to the Russian airline.
Shametavets said the attack had been in preparation for months and involved careful planning to take advantage of multiple weaknesses in Aeroflot’s systems. The impact of the attack runs deep and is potentially long-lasting on the airline’s operations, she added.
Broader Impact on Russian Aviation
This was the latest of several blows to Russian aviation. Russian airports have suffered large-scale disruptions in recent months due to Ukrainian drone strikes on infrastructure. These incidents have raised alarm about air travel safety in Russia.
Although the disruption from the Aeroflot cyberattack has been significant, it is also a reflection of a larger pattern of increasing cyber threats aimed at the biggest Russian companies and institutions. As tensions simmer between Russia and Ukraine, cybersecurity experts are warning about the rising possibility of such attacks occurring with greater frequency and effectiveness against critical sectors such as transportation and energy.
What’s Next for Aeroflot?
Aeroflot has not said when normal flight services will be resumed. Affected passengers have been asked to check their flight status online and consider alternative travel plans, according to the airline. The impact is likely to cast a long shadow over Aeroflot’s reputation, at a time of growing cyberattacks against Russia’s state-owned companies.
Russians focus on strengthening national infrastructure security as investigation goes on. At the same time, experts and analysts are urging more cooperation by private and public actors to defend against further cyberattacks.
A Global Wake-Up Call for Airlines
It is a glaring reminder of how vulnerable the airline business remains. Major airlines and airports are increasingly frequent targets for cyber attacks, and the Aeroflot leak illustrates the pressing need for strong cybersecurity throughout the global aviation industry.
Airlines and travellers both prepare for the mounting threat of cybercrime as technology advances. In the meantime, passengers will have to bear the brunt of this major meltdown and allowing the airline and the authorities to work to return things to normal.
