The number of attacks on Innostage IT Company increased 10 times

Over the last week of June, the number of attacks on public resources of the Innostage IT company increased 10 times. According to monitoring data from Innostage SOC CyberART, in total for June 2024, the number of blocked attacks amounted to 21,898, with peak values ​​occurring on June 24 and 25. Infrastructure exploration attempts are dominated in hacker activities. Over the past week, 10 external IP addresses have been automatically banned. It is noteworthy that 12,546 of the failed information security incidents (over 57% of the total) were committed from Russia.

This is explained by the fact that on May 26, Innostage launched its own Bug bounty programme in the open cyber testing mode. This format encourages ethical hackers to carry out an unacceptable event - the theft of 2,000 roubles from a company account for a reward of 5 million rubles. At the same time, it is permissible to act by any methods and tools under the Criminal Code of the Russian Federation. The high activity of independent cybersecurity researchers indicates increased interest in the programme and ultimately meets the goals of its implementation - increasing the level of cyber resilience of business. However, some of them can also be produced by Russian attackers.

The remaining 43% of cases are red hacker traffic. The geography of the attackers is represented by the following countries: Spain (2231), Hong Kong (1015), Norway (132), Great Britain (89), USA (32), Germany (21), the Netherlands (8) and Turkey (3). For another 5,811 events, link to a specific state was not found.