# Russian Software Giant Kaluga Astral Hit by Week-Long Cyberattack **Kaluga Astral**, a prominent Russian software company, announced on Monday that it suffered a significant cyberattack earlier in May. The incident crippled several of its core services for about a week, causing widespread disruption for customers reliant on its platforms for essential business functions like tax reporting and electronic document management. "We are bringing each service back online only after completing a full security review — we are not willing to compromise security for the sake of speed. That is why the recovery process is taking longer than we would like," the company stated. ## Investigation Underway **Kaluga Astral** has indicated that Russian government agencies are actively involved in the ongoing investigation, which has limited the company's ability to publicly disclose further details about the attack. While an internal investigation found no evidence of customer data leakage or compromise, the company has not attributed the incident to any specific hacking group, nor has it provided technical details or potential motives. ## Impact on Customers Customer complaints highlight the broad impact of the disruption. Businesses experienced interruptions in cash register operations, difficulties in selling regulated goods, loss of access to customer portals and corporate email, and problems with electronic human resources document management systems and digital certificate authentication. **Kaluga Astral** develops vital electronic document management software, digital reporting systems for government agencies, and cybersecurity products. Founded in 1993, the company serves a wide array of clients, including government institutions, banks, and large state-owned enterprises such as **Russian Post** and Moscow's public transport operator **Mosgortrans**. ## A History of Attacks This is not the first time **Kaluga Astral** has faced cyber adversity. In 2022, the company reported a distributed denial-of-service (**DDoS**) attack that also disrupted services and interfered with customer reporting processes. The perpetrator of that attack remains unknown. In 2023, the **IT Army of Ukraine**, a volunteer hacktivist collective, publicly listed **Kaluga Astral** among its intended targets. However, it remains unconfirmed whether the group successfully executed an attack against the company at that time, and there is currently no evidence linking them to the latest incident.