Hacktivists Claim to Have Hacked Belarusian Railway

A hacker group calling itself the “Belarusian Cyber Partisans” claims to have hacked and encrypted the servers of the Belarusian Railway. According to the hacktivists, the attack was motivated by Russia’s use of the Belarusian Railway to transport troops and military equipment.

The group announced their actions on Twitter and Telegram, taking responsibility for the breach and issuing demands for the release of political prisoners, as well as a halt to the use of the Belarusian Railway’s infrastructure for moving Russian troops.

The hackers stated that they “encrypted some of the servers, databases, and workstations,” but did not touch “automation and security systems” for safety reasons.

Screenshots and Evidence Shared

On their Telegram channel, the hacktivists shared screenshots from compromised systems, demonstrating access to the Belarusian Railway’s internal networks, Veeam backup servers, a Windows domain controller, and a backup server containing dozens of terabytes of data. One screenshot showed the Belarusian Railway’s online ticketing system returning an error during an SQL query.

Official Response and Service Disruptions

Yesterday, the Belarusian Railway’s website posted a notice about temporary technical issues, stating that “due to technical reasons, electronic ticketing services are temporarily unavailable.” The announcement made no mention of a cyberattack, nor did it specify the exact nature of the disruption or when services would be restored.