Photo by Sergey Svechnikov on Unsplash
When Russia’s biggest airline, Aeroflot, suddenly canceled flights and threw airports across the country into chaos on Monday, most people assumed it was another technical glitch.
But according to two pro-Ukrainian hacker groups, this was no accident.
What Actually Happened?
Let’s start with the basics: Aeroflot canceled around 40 flights and delayed many more, according to the departure board at Moscow’s Sheremetyevo Airport. Most of the impacted routes were inside Russia, but some flights to Minsk (Belarus) and Yerevan (Armenia) were hit too. Travelers were stranded, airport traffic was a mess, and the disruption rippled across the Russian aviation system.
Aeroflot pointed to a “technical failure” as the official reason.
But behind the scenes, a very different story was unfolding.
Russian prosecutors quickly confirmed to Reuters that the IT problems were the result of a hack. They’ve now opened a criminal investigation. And Anton Gorelkin, a Russian lawmaker, suggested the attack may have come from hacktivists backed by “unfriendly states.”
Photo by Jeff Hardi on Unsplash
Who’s Taking Credit?
Two hacker groups stepped forward almost immediately, both known for supporting Ukraine in its war with Russia.
One group, Silent Crow, posted on Telegram saying it had copied Aeroflot’s entire flight history database — including audio recordings, surveillance footage, and even internal calls. According to Silent Crow, restoration won’t be cheap: they estimate it’ll cost “tens of millions of dollars.”
Their message? “The damage is strategic.”
The second group, Belarusian Cyberpartisans, posted that this was the result of a year-long operation. They claim to have destroyed 7,000 servers and even taken control of personal computers used by Aeroflot employees, including some in senior management.
Why This Matters
This isn’t just about a few delayed flights.
If what the hackers are saying is true, this was a serious breach deep inside a major piece of Russian infrastructure. And this isn’t the first time. Ukrainian-linked hackers previously hit Rosaviatsiya, Russia’s civil aviation agency, forcing them to use pen and paper for weeks after a cyberattack erased 18 months of emails.
Silent Crow has also been behind other cyberattacks in Russia, including an attack on Rosreestr, the country’s land registry agency, and on a government-linked telecom contractor.
The Belarusian Cyberpartisans have also made headlines in the past. In 2022, they took aim at the Belarusian Railway, reportedly disrupting Russian arms shipments headed for Ukraine.
Photo by Toa Heftiba on Unsplash
The Bigger Picture
This latest incident comes just a day after Russia canceled its Navy Day parades due to Ukrainian drone strikes in St. Petersburg. The timing seems pointed.
From flight databases to email inboxes, cyberwarfare is becoming an increasingly important front in the Russia-Ukraine conflict. These hacks aren’t just technical — they’re political, disruptive, and potentially very personal for the people caught in the fallout.
If Aeroflot’s data is leaked, the impact won’t just be financial. Millions of everyday Russians who’ve flown the airline could find their private information circulating online.
So whether you’re following the war, interested in cybersecurity, or just wondering why your travel plans might be impacted — this is one story worth keeping an eye on.
Keywords: Aeroflot, Russian airline, cyberattack, Ukraine hackers, Silent Crow, Belarusian Cyberpartisans, flight cancellations
