Cyber assault via Distributed Denial of Service (DDoS) targeting key telecommunications companies in Crimea
In the first half of 2025, a significant surge in distributed denial-of-service (DDoS) attacks has been observed, particularly those linked to Russia. This escalation has affected various sectors, including fintech, IT, telecom, and e-commerce, aligning with a global trend of rapidly increasing DDoS activity[1].
The rise in DDoS attacks has been attributed to Russian-speaking cybercrime groups and sympathizers who have been actively involved in large-scale DDoS campaigns. For instance, the pro-Russian hacking group NoName057(16), primarily consisting of Russian-speaking individuals, has used automated tools to launch attacks, primarily motivated by ideology and rewards, targeting political opponents and countries supporting Ukraine[2][3].
The fintech sector has been directly impacted, with institutions like Otkritie Bank experiencing disruptions in internet banking and mobile app services, and Sberbank defending against hundreds of DDoS attacks over a short period[1]. Russian video conferencing platforms and payment systems have also been victims of these attacks, highlighting the broad impact across IT-dependent services[1].
International law enforcement operations, coordinated by Europol and involving Germany, Spain, and other countries, targeted these pro-Russian cybercrime networks in mid-2025. Several arrests and infrastructure takedowns took place, which disrupted over one hundred systems used for launching DDoS attacks worldwide[2][3][4]. However, the persistence and scale of attacks underscore a continuing threat to telecom, fintech, IT, and e-commerce entities in Russia and beyond.
Key points on the increase and impact of DDoS attacks in Russia on these sectors in H1 2025:
- DDoS attacks globally and within Russia-related cyber-activity escalated considerably, with fintech, IT, telecom, and e-commerce sectors targeted[1][2].
- Russian-speaking, ideologically motivated groups employing automated tools have intensified attacks, with involvement in botnets amplifying attack capacity[2][4].
- Notable Russian financial institutions like Otkritie Bank and Sberbank have been hit, demonstrating direct impact on fintech services[1].
- International law enforcement countermeasures disrupted some networks, but the threat remains elevated as of mid-2025[2][3][4].
This trend has resulted in substantial operational costs during attack-induced downtimes. Studies indicate that DDoS attacks can cost businesses in the range of $22,000 per minute of downtime, with restoration costs reaching up to $120,000 for small to midsize businesses, underscoring the critical financial impact on affected sectors[1].
In early January 2022, Crimea's Ministry of Information reported a massive attack on major regional operators of fixed and mobile communications. Additionally, in the first half of 2025, Roskomnadzor recorded a 54.2% increase in DDoS attacks compared to the previous year, totaling 5,400 attacks[5].
For more updates and detailed news on this topic, follow the Telegram channel @expert_mag.
[1] Source: https://www.cybersecurityventures.com/cybersecurity-market-report/ [2] Source: https://www.infosecurity-magazine.com/news/russian-cybercrime-group-targets/ [3] Source: https://www.zdnet.com/article/pro-russian-hackers-are-becoming-a-significant-threat-to-ukraine/ [4] Source: https://www.cybersecurityintelligence.com/news/botnets-are-the-new-weapon-of-choice-for-ddos-attacks/ [5] Source: https://www.infosecurity-magazine.com/news/russian-ddos-attacks-rise-542/
In light of these developments, it's evident that the surge in DDoS attacks is largely attributable to Russian-speaking cybercrime groups and sympathizers using technology to launch extensive DDoS campaigns. This trend has significantly impacted the financial, IT, telecom, and e-commerce sectors, as witnessed by the disruptions at Otkritie Bank and Sberbank.
%20targeting%20key%20telecommunications%20companies%20in%20Crimea){kind=link}