On April 1, 2025, the website and application of Russian Railways (RZD) were subjected to a massive DDoS attack, causing widespread disruption for users attempting to purchase tickets online. According to the company’s press service, RZD is working diligently to restore normal operations as quickly as possible. Despite the problems online, ticket sales at stations and train terminals continue as usual.
Reports from readers indicate that the official RZD website is currently inaccessible, while the mobile application, although opening, is not functioning correctly for ticket purchases. One frustrated user, Victoria, shared her experience, stating, "In the application, only the main page opens, and when searching for tickets, it freezes and does not load further." This sentiment has been echoed by many others, with the service Downdetector noting that over 1,500 users reported issues shortly after the attack began.
The DDoS attack on RZD is just one of many cyber incidents affecting businesses and individuals across Russia and beyond. In a separate but related issue, a reader reached out to the news outlet Onlíner to investigate a suspicious website promoting a lottery-style giveaway claiming to award a million Russian rubles. The site, which appeared to be associated with various well-known online marketplaces, raised red flags with its dubious claims and lack of credible sponsorship.
Onlíner’s investigation revealed a network of fake websites designed to deceive users by mimicking legitimate brands and offering enticing, yet non-existent, prizes. The main page of the suspect site boasted of being the "largest daily promotion" and featured promises of cash prizes, gift certificates, smartphones, and travel packages. However, the supposed legal organizer of the promotion, the "Association of Internet Commerce," could not be found through any credible internet search.
Additionally, the site's "User Agreement" was merely text without a link to any official document, further undermining its credibility. Testing conducted across various browsers showed that every visitor was declared a winner of a prize worth 315,000 Russian rubles, roughly equivalent to $3,685 or 11,482 Belarusian rubles. However, to claim their winnings, users were instructed to pay a fee of 1160 Russian rubles (approximately $42).
After making this payment, numerous users reported never receiving their promised prizes. Instead, they received further demands for payment, often at increasing amounts, leading many to lose significant sums of money. This type of fraudulent scheme has become increasingly common, particularly targeting Russian internet users, but also affecting individuals in neighboring Belarus.
The proliferation of such scams is often facilitated by email marketing, where potential victims receive unsolicited messages disguised as communications from reputable brands. These emails typically contain links to the fraudulent sites, luring the unsuspecting into clicking through out of curiosity or concern about a supposed order.
Experts warn that these scams are not just limited to fake lotteries. More sophisticated schemes exist, such as those promoting fake investments in high-profile companies like Gazprom and Belorusneft. In one instance, a 26-year-old man lost about 25,000 rubles after being convinced to invest in a fake Belorusneft promotion that promised substantial weekly earnings.
Olga Svistunova, a cybersecurity expert from Kaspersky, emphasized the importance of vigilance when encountering seemingly generous offers online. She advises users to critically assess any offers that seem too good to be true and to verify information through official channels. Svistunova also recommends reporting any incidents of fraud to both banks and law enforcement agencies.
As cyber attacks continue to rise, Dmitry Ponomarenko, head of the cyber security center at Belorusskiye Oblachnye Tekhnologii, noted that hackers often evade detection and accountability. He stressed the need for businesses to implement stringent information security measures in their contracts with service providers, ensuring that proper protocols are in place to safeguard against potential breaches.
In light of these ongoing threats, users are encouraged to remain cautious and skeptical of unsolicited offers, particularly those requiring upfront payments. The ability to recognize red flags, such as unusual domain names or requests for personal information, can be crucial in preventing financial loss.
As the digital landscape evolves, so too do the tactics employed by cybercriminals. Staying informed and aware of the latest scams can empower users to protect themselves and their finances from the growing tide of online fraud.
