Killnet, a pro-Russian hacker collective, claimed responsibility for breaching Ukraine’s largest alcohol producers, Bayadera Group and Global Spirits. The assertion was reported by the outlet socialbites.ca, with Killnet’s leader, known online as Killmilk, delivering the statement to the site’s reporters.
According to Killmilk, the group infiltrated corporate Wi-Fi networks and gained access to the internal computer systems of the two companies. The breach allegedly exposed the personal data of all Bayadera Group and Global Spirits employees, including members of senior management. In addition to personnel records, Killnet says they obtained a trove of the companies’ documents, such as contracts, internal reports, and records related to product supply arrangements with foreign partners.
Killmilk indicated a stated intent to leverage the compromised information to disrupt the funding and operational logistics supporting Ukraine’s armed forces. The hacker claimed the data would be used to pressure the organizations from within and on their external relations, as a tactic to influence broader policy and funding decisions tied to the conflict.
Global Spirits and Bayadera Group are described as Ukraine’s leading alcohol groups, with a portfolio including brands such as Khortitsa, Morosha, Crimean Vintage, True Tequila, Real Rum, and various others. Their beverages are distributed across multiple global markets. In recent public statements tied to the ongoing security situation, both companies announced financial support for the Ukrainian Armed Forces, underscoring their public stance during the conflict. In Russia, Evgeny Chernyak, the founder of Global Spirits, has been designated by some sources as a terrorist figure, reflecting the contentious context surrounding the business and its backers.
Earlier reports from socialbites.ca noted a perceived shift in hacker activity and interest related to Russia, suggesting a waning emphasis among certain groups. The current claim by Killnet adds a new data breach dimension to the cyber activity landscape surrounding the Ukrainian conflict, highlighting how digital incursions intersect corporate operations, national security funding, and international supply chains.
Experts cautioned that while such claims require verification, the incident underscores the ongoing risk to large multinational assets operating in volatile regions. If the breach is confirmed, the affected companies may undertake comprehensive investigations to determine the extent of the exposure, assess regulatory compliance implications, and bolster cyber resilience across their networks. Stakeholders across the industry will likely monitor any formal updates from the firms and from independent cybersecurity researchers to understand the potential impact on customers, partners, and markets.