On Might 26, the SDEK parcel supply service suspended the acceptance and supply of parcels; the following day, the worldwide hacker group Head Mare took accountability for stopping the work. On the identical time, the hackers reported on the social community X that they used an encryption virus, that is additionally confirmed Vedomosti’s supply in SDEK, and an interlocutor in one of many massive firms within the area of data safety.
Of their message, the hackers printed screenshots of the penetration into the supply service system and “stated good day” to the Russian digital danger administration firm Bi.Zone, which advises SDEK on cybersecurity.
“Now we have encountered a technical glitch and are investigating. There are a number of theories, and we contemplate it unprofessional to say something earlier than receiving correct data,” a SDEK consultant advised Vedomosti.
The service additionally didn’t reply the query of when the corporate will resume work. One other Vedomosti supply in SDEK reported that the acceptance and supply of parcels might resume on Might 28.
Bi.Zone declined to remark.
As Igor Bederov, head of the investigation division of T.Hunter and SafeNet NTI market skilled, defined to Vedomosti, the encryption virus penetrates the system in a number of methods: customers typically obtain it via electronic mail or different messages, much less typically the system is hacked.
Alexey Parfentyev, head of the analytics division at Serchinform, famous that ransomware can be known as ransomware, as a result of most frequently hackers discuss what must be completed to “decrypt” the info: who to contact, how and the way a lot to pay.
In keeping with a research by the Russian Affiliation of Digital Commerce (RAEC), the variety of assaults utilizing ransomware viruses in 2023 elevated by 160% in comparison with 2022. The common quantity of the preliminary ransom for decrypting data in 2023 reached 53 million rubles.
The enterprise of SDEK is very depending on the uninterrupted operation of data programs, defined Ruslan Permyakov, deputy director of the NTI Competence Heart “Trusted Interplay Applied sciences” based mostly on TUSUR. In keeping with the skilled, assaults on such companies typically result in massive losses resulting from downtime.
On the finish of April, Vedomosti reported that the founder, CEO and majority proprietor of SDEK, Leonid Goldort, had discovered a purchaser for his share in SDEK-World LLC. Goldort had 55.44%. In keeping with the publication, a fund managed by the administration firm “Trendy Actual Property Funds” can buy Goldort’s shares. The deal has not but been concluded.
Normal Director of Infoline-Analytics Mikhail Burmistrov, in flip, defined “Kommersant” {that a} long-term failure entails, to start with, reputational losses. In keeping with him, difficulties come up with companions and purchasers. And if the issue is just not resolved throughout the subsequent couple of days, SDEK might lose market share, the skilled famous.
As Ozon representatives advised the publication, solely 0.2% of orders are delivered utilizing SDEK. The corporate famous that it had already warned clients and sellers in regards to the accomplice’s issues. Ozon switches new orders to different contractors.
Avito did the identical, the place as an alternative of SDEK, consumers can use Russian Put up, BoxBerry, Yandex Supply and different companies, Kommersant notes.
Wildberries advised the newspaper that the corporate cooperates with numerous carriers along with its personal logistics capacities, which permits it to distribute the load. In keeping with representatives of {the marketplace}, inner processes of firms don’t have an effect on Wildberries processes, together with the timing of supply of products to clients.