Exclusive: Hackers stole Russian prisoner database to avenge death of Navalny
Within hours of opposition leader Alexey Navalny’s death in February in a Russian prison, a group of anti-Kremlin hackers went looking for revenge.
Hackers Seek Revenge for Navalny's Death and Breach Russian Prison System
Within hours of opposition leader Alexey Navalny's death in a Russian prison in February, a group of anti-Kremlin hackers took action seeking revenge. These hackers gained access to a computer network connected to Russia's prison system and proceeded to deface a prison contractor's website. They posted a photo of Navalny accompanied by a message proclaiming "Long live Alexey Navalny!" This breach also involved stealing a database containing information on Russian prisoners and their contacts. The hackers, claiming to be a mix of nationalities including Russian expatriates and Ukrainians, are sharing this data in the hope of finding answers surrounding Navalny's death.
Manipulation of the Russian Prison System's Online Commissary
In addition to the website defacement, the hackers used their access to the Russian prison system's online commissary, where family members purchase food for inmates. They changed the prices of items such as noodles and canned beef to one ruble (approximately $0.01), significantly lower than the normal prices. It took several hours for the administrators of the online prison shop to notice the anomaly, and it would be three days before the IT staff fully shut down the hacker-provided discounts.
Scale and Authenticity of the Breach
The hackers claim that the stolen database contains information on approximately 800,000 prisoners and their contacts. A review by CNN found some duplicate entries but confirmed that the database still contains information on hundreds of thousands of people, which includes names of prisoners currently in Russian prison according to public records. The hacked online prison shop, officially known as JSC Kaluzhskoe, is owned by the Russian state and serves 34 regions in Russia.
Hacktivism and its Impact
This incident reflects a new chapter in hacktivism, which refers to politically motivated hacking. Since Russia's invasion of Ukraine more than two years ago, hacktivism has become increasingly prevalent. In the aftermath of the invasion, a Ukrainian individual retaliated by leaking internal data from a Russian ransomware gang, revealing alleged connections with Russian intelligence. Pro-Ukraine hackers have also claimed responsibility for various attacks, including targeting a Russian internet provider and disrupting websites broadcasting a high-profile Putin speech. The war in Ukraine has ushered in an unprecedented scale of hacktivism, allowing diverse groups to express their perspectives, support their nations, target perceived adversaries, and attempt to influence the course of the conflict.
Message from the Hackers
The hack of the online prison shop was accompanied by a message from self-described Russian expatriates. The message, in Russian, stated, "We, IT specialists, left today's Russia. We love our country and will return when it is free from the Putin regime. And we'll go till the end on this path."