October 1, 2022

KEY POINTS

  • Workforce OneFist strikes once more inside Russian monetary system
  • The worldwide group of volunteer cyberwarriors hits two Russian logistics firms
  • The group destroyed CRM and wiped the database of each the businesses

Workforce OneFist, a world group of volunteer cyber warriors that serves because the worldwide arm of the IT Military of Ukraine, has breached VTB Financial institution, Russia’s second-largest, late Tuesday evening.

In an unique interview, Workforce OneFist’s founder Voltage revealed that the staff obtained a maintain of essential intel from a few “mid-sized logistics firms that present providers for the Russian authorities,” which led them to the businesses’ accounts at VTB Financial institution.

Workforce OneFist drained three accounts of the 2 firms, which collectively held 1.45 billion rubles (greater than $23 million). The group needed to donate the funds to Ukraine, however any financial institution switch needed to be accepted by the financial institution, which made it unimaginable.

Russian President Vladimir Putin mentioned final week that Moscow will now solely settle for rubles as fee for pure fuel deliveries to “unfriendly” international locations, which embody the European Union
AFP / Kirill KUDRYAVTSEV

So the staff opted to make it troublesome for the Russian firms to trace their funds and retreived their cash. The hackers “dispersed the cash inside their very own firm in a means that took all of it out of ‘Obtainable Money.'” Voltage defined: “What we did was tie up their cash in order that it will possibly’t be used for anything till they corrected the accounting (modifications) we did by shifting the cash from one division within the firm to a different, out of the primary account and into the cashiers’ account.”

See also  Trump Might Announce 2024 Presidential Run Quickly, Advisers Counsel

However then Workforce OneFist is just not one to depart the scene with out leaving extra complications to the Russians. To ensure that each firms may have a long and hard time resolving the difficulty, the group “blew up the system” by deleting your complete database.

The group additionally despatched an SMS message to all staff “trolling them,” and rebranded their bodily paychecks with the Onefist emblem. “We additionally deleted massive parts of the CRM / Accounting database, rendering your complete system unusable, and we locked them out of it,” Voltage mentioned.

screencap of SMS message
Workforce One Fist Voltage

“They don’t know the place the cash obtained despatched proper now because the information of it have been destroyed,” he added. “They must work with their IT employees to try to restore or rebuild the CRM, whereas on the identical time attempting to work with the financial institution to determine the place the cash went,” the Workforce OneFist founder shared.

Whereas the assault was collectively carried out by your complete staff, Voltage talked about that It was “Workforce OneFists’s Polish master-hacker Mephisto who penetrated the system and made the assault potential. From there, OneFist’s Ukrainian cyber warriors performed the precise assault.”