Cyber Incident Victim: PickPoint
Date:
Dec 2020
Location:
Russia
Summary
A cyberattack targeted an online order delivery service in Moscow, compromising its automated checkpoint systems and causing doors to open unexpectedly without user intervention. The incident disrupted operations and raised security concerns regarding unauthorized access to physical delivery compartments. Attackers responsible for the breach remained unidentified, with no confirmed data theft or additional impacts disclosed beyond the system manipulation.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On December 4, 2020, unidentified hackers executed a cyber attack targeting PickPoint, an online order delivery service operating in Moscow, Russia. The incident manifested through unauthorized automatic activations of checkpoint doors across the company’s physical delivery infrastructure. Reports of the breach surfaced publicly on December 5, though the precise duration of the intrusion and initial compromise timeline remained unspecified in available disclosures. The attack directly impacted operational functionality by disrupting secure access controls at PickPoint facilities, though the extent of affected locations within Moscow was not quantified. No customer data compromise or financial theft was referenced in initial reports, suggesting the primary impact centered on physical system manipulation rather than conventional data exfiltration. The automatic door activations indicated potential targeting of industrial control systems or networked access management components within PickPoint’s infrastructure.
The threat actors’ identity, motivations, and intrusion methodology were not disclosed in immediate reporting. PickPoint’s public response measures, technical containment actions, and forensic findings were absent from the available source material, leaving organizational recovery timelines and mitigation strategies undocumented. The incident’s operational consequences included immediate service disruptions at compromised checkpoints, though broader supply chain effects on package deliveries remained unverified. No ransomware deployment, data leaks, or extortion demands were cited as components of the attack. The breach highlighted physical security implications of cyber intrusions in logistics infrastructure, with direct mechanical consequences distinguishing it from conventional data-centric breaches. Public disclosure emerged through media reports rather than official organizational statements, limiting available technical details regarding attack vectors and remediation efforts.