Cyber Incident Victim: Министе́рство иностра́нных дел Росси́йской Федера́ции
Date:
Oct 2024
Location:
Russia
Summary
The Russian Ministry of Foreign Affairs experienced a significant cyberattack targeting its official website infrastructure during the BRICS summit, described by spokesperson Maria Zakharova as "unprecedented in scale." The attack involved a distributed denial-of-service (DDoS) operation that overwhelmed the portal with malicious traffic, causing operational disruptions and service denials to legitimate users. While the ministry regularly faces similar attacks, this incident prompted heightened security measures in Kazan, where the international summit was being hosted. The timing coincided with high-profile diplomatic engagements involving approximately 20 foreign leaders, though the attack's origin and specific perpetrators were not disclosed in initial statements.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 23, 2024, the Russian Ministry of Foreign Affairs (МИД России) experienced a significant cyberattack targeting its official website infrastructure during the 16th BRICS Summit hosted in Kazan. Ministry spokesperson Maria Zakharova confirmed the incident as "unprecedented in scale," describing it as a massive distributed denial-of-service (DDoS) attack originating from abroad. The attack began in the morning and overwhelmed the ministry's portal with malicious traffic, disrupting normal operations by causing system crashes and preventing legitimate user access. This occurred during the three-day BRICS summit (October 22-24), where President Vladimir Putin was scheduled to meet with approximately 20 foreign leaders and host around 20 bilateral meetings. Authorities in Kazan responded by immediately reinforcing security measures across the city, though specific technical containment procedures were not disclosed. Zakharova noted that while the ministry regularly faces similar cyber assaults, the timing and intensity of this incident were exceptional. The disruption coincided with Russia's high-stakes diplomatic efforts to demonstrate geopolitical relevance through the BRICS forum amid Western isolation over the Ukraine conflict.
The cyberattack directly impacted Russia's flagship international event, which the Kremlin had promoted as potentially "the largest foreign policy event ever held" on Russian soil, with 36 countries confirming participation. The compromised portal hindered the ministry's communications during summit discussions focused on multilateralism, global security, and economic cooperation among BRICS members—now expanded to include Egypt, Iran, UAE, and Ethiopia alongside the original five nations. No data breaches or secondary attack vectors were reported, with the disruption limited to service availability. The incident underscored vulnerabilities in critical digital infrastructure during high-profile state functions, though broader summit proceedings continued without explicit delays. Russian officials maintained operational continuity for bilateral negotiations and plenary sessions addressing the summit's three cooperation pillars: political-security coordination, economic-financial collaboration, and cultural-humanitarian ties. Security reinforcements in Kazan remained in place through the summit's conclusion on October 24, with no subsequent attacks reported during the event's final day.