On 12 June, hacker groups InformNapalm and Militant Intelligence released several leaked documents obtained from JSC Russian Helicopters—a major Russian helicopter manufacturing company. According to the groups, they obtained all of the company’s international contracts, supply routes, and payment documents of the company revealing extensive foreign cooperation with Russia’s defense sector.

InformNapalm stated that the cyber operation coincided with Russia’s national holiday.

“Today, 12 June, the terrorist state celebrates ‘Russia Day’,” the group wrote.

The leak was described as symbolic “greetings with a noose” for Russia, meant to expose the vulnerabilities of its military-industrial complex.

InformNapalm denounced the White House’s currently consistent weak stance towards Moscow, pointing out that the US Cyber Command halted cyber operations against Russia during Donald Trump’s presidency. As a result, the group said, “volunteers and enthusiasts” now carry out cyber operations against Russian targets.

Wider cyber operation

The report says that the cyberattack was part of a broader campaign labeled OpsHackRussia’sDay, which, according to the hackers, targeted a network of Russian corporations tied to the defense industry. JSC Russian Helicopters, a holding that unites all Russian helicopter manufacturers, is among the breached entities. The company operates under Oboronprom, itself a subsidiary of the state-owned conglomerate Rostec.

“As a result of the hack, [JSC Russian Helicopters’] all international contracts, supply routes, bank receipts, accounts from India and other countries were exposed, including embassy archives and Ministry of Defense documents,” InformNapalm wrote.

Documents reportedly mention India, Egypt, Algeria, Indonesia, Laos, Cuba, Kenya, and Uganda. The leaked content includes full detail on tenders, clients, correspondence, staffing schedules, travel routes, banking relations, and coordination with the Russian Ministry of Industry and Trade.

Military logistics and foreign involvement

Among the disclosed data, Egypt is named as a logistics hub for Mi-17V-5 maintenance, while Bulgaria appears in supply chain and repair cooperation schemes, according to the report. Other nations named include Azerbaijan and North Macedonia. The documents mention entities like RAWAN HANS in India and detail procurement pathways through Algeria and Indonesia, often using third-country routes.

Hackers promise more data, predict fallout

The publication claims the leak will lead to serious disruptions:

“This release will bring major problems to their defense sector and expose their international customers and partners who tried to stay hidden.”

The group anticipates “contract terminations, sanctions tightening, and global scandals.”

According to InformNapalm, part of the obtained information is already in use for Ukraine’s defense, and more data will be published over time.