Several prominent Russian bank clients experienced issues with their mobile apps and websites. According to Downdetector, complaints began to surge around 09:30 Moscow time.
The affected banks included Gazprombank, Alfa-Bank, VTB, and Rosbank. By midday, Post Bank clients also reported problems. Users could not make payments or access their accounts, leading to widespread frustration.
VTB’s press service confirmed that some clients faced local restrictions due to a “high load on the infrastructure of Internet providers.” They emphasized that the banking sector was subjected to a DDoS attack orchestrated from abroad.
According to the Forbes reports, Alfa Bank’s press service reassured clients that the issues were temporary due to technical work, asserting that “everything will be up and running soon.” Gazprombank also acknowledged short-term difficulties with certain transactions.
Join our free webinar to learn about combating slow DDoS attacks, a major threat today.
The incidents on July 24 followed similar disruptions on July 23, affecting Raiffeisenbank, Rosbank, GPB, and Rosselkhozbank. Daniil Shcherbakov, Deputy CEO of Servicepipe, noted the similarity between the attacks on both days.
He explained that hackers scanned the infrastructure of the victims, identified vulnerable spots, and targeted them.
Shcherbakov highlighted that one credit institution attacked over 400 IP addresses simultaneously. He speculated that the attackers might target all major players in the financial market.
As banks reported a return to regular operation later in the day, the incidents underscore the increasing threat of politically motivated cyber attacks on critical financial infrastructure.
The situation remains fluid, and further developments are anticipated as authorities and financial institutions bolster their defenses against such threats.
Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo
A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt…
A threat actor known as #LongNight has reportedly put up for sale remote code execution…
Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile…
Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular application…
The European Union has escalated its response to Russia’s ongoing campaign of hybrid threats, announcing…
Venice.ai has rapidly emerged as a disruptive force in the AI landscape, positioning itself as…