German authorities have filed charges against a 30-year-old man in connection with a major cyberattack on Rosneft Deutschland, the German subsidiary of the Russian state-owned oil company. The attack, which took place in March 2022, just weeks after Russia’s full-scale invasion of Ukraine, severely disrupted the company’s operations and is estimated to have caused millions of euros in damages. The indictment, brought by the Berlin public prosecutor’s office, accuses the man of data espionage and particularly serious computer sabotage.
Investigators from the Federal Criminal Police Office (BKA) allege that the suspect, who has not been publicly named, was a member of the “Anonymous” hacking collective. During the intrusion, he reportedly stole approximately 20 terabytes of data and deleted information from critical systems. The stolen data was subsequently published on a website allegedly run by the accused and two other members of the group. The site, which included a partial list of the compromised files, was active until mid-2023.
The attack, claimed by the “Anonymous Germany” group, was framed as a protest against Russia’s invasion of Ukraine. The hackers claimed to have wiped data from dozens of devices, including 59 Apple systems, and embedded the slogan “Glory to Ukraine” into Rosneft’s infrastructure. These actions forced Rosneft Deutschland to completely shut down its IT systems and launch a costly forensic investigation, which alone incurred costs of nearly €10 million. In addition to the investigative and recovery costs, logistical disruptions led to further economic losses of over €2.5 million.
While the attack did not lead to a major interruption of oil supply, German authorities and cybersecurity experts have highlighted its significant impact on a critical piece of the country’s infrastructure. The case is seen as a crucial step in holding individuals accountable for politically motivated cyberattacks on essential services, signaling a strong stance against such actions. The upcoming trial will likely set a key legal precedent in the ongoing digital conflict that has mirrored the geopolitical tensions between nations.
