Then came the letter. Not to the press. To Volkov personally, delivered via internal company mail—a paper envelope on his desk one morning. Inside: a USB drive and a note.
Volkov didn’t sleep that night. He called his head of IT. The vulnerabilities were real. And they were fixed. rambler ru hacker
"Dear Mr. Volkov, Your payment gateway’s SSL is three years outdated. Your customer database has a root-level vulnerability in column 47. I fixed both. In exchange, I took nothing. But next time, I might. — Rambler Ru Hacker" Then came the letter
The public narrative split. News outlets called the hacker a “digital Robin Hood” or “a terrorist with a text editor.” The FSB opened a quiet file. But the hacker never struck again—not on Rambler, anyway. Inside: a USB drive and a note
The first attack was elegant, not explosive. On a Tuesday night, users logging into their Rambler email found their inboxes empty—replaced by a single haiku in Russian:
Years later, a former Rambler engineer wrote a memoir. In it, he claimed the hacker was a disgruntled ex-employee who’d been fired for suggesting security audits. But he had no proof. Another theory: it was a white-hat drill gone rogue.
No one ever deleted it. Maybe because it reminded them: in the house of data, the quiet visitor sees everything.