Russia's Roskomnadzor hit by massive cyberattack linked to US servers
Russia's communications regulator, Roskomnadzor, faced a major cyberattack on 27 February. The incident disrupted access to its online services and targeted key state infrastructure. Officials described the assault as a sophisticated, multi-layered operation involving servers and botnets across several countries.
The attack struck Roskomnadzor's systems alongside resources controlled by the Russian Defence Ministry. It also hit the state-run Main Radio Frequency Center, crippling digital services linked to online voting and other government platforms. Experts noted that most malicious activity originated from within the USA, though servers in China, the UK, and the Netherlands also played a role.
Technical teams worked to isolate harmful traffic and restore affected services. Roskomnadzor has since focused on tracing the botnets involved, though no public updates confirm full recovery of all disrupted resources. The agency holds broad powers to block websites and enforce online restrictions, tools that rights groups like Human Rights Watch have criticised for enabling opaque state censorship.
This incident follows earlier disruptions, including a large-scale DDoS attack that previously targeted Russia's digital voting systems. Authorities have not released further details on the extent of the damage or the timeline for complete system recovery.
The cyberattack underscores vulnerabilities in Russia's state-run digital infrastructure. Roskomnadzor's ongoing efforts to locate botnets and restore services highlight the scale of the breach. Meanwhile, the agency's role in online censorship remains under scrutiny by international observers.
