What is behind the leak of the database of the Rustam Kurmaev and Partners law office, and why are they silent about it?
On June 6, 2022, the activist group Anonymous reported about a suspected data breach of approximately 1TB of information from the prominent Russian law firm, Rustam Kurmaev & Partners (RKP Law). Emma Best, a journalist and co-founder of a non-profit organization for whistleblowers, Distributed Denial of Secrets (DDoSecrets), revealed that the data dump, split into multiple archives, was shared on torrent trackers for free download. The relevant links can still be found on the DDoSecrets website. This breach carries significant implications for the corporate sector in the Russian Federation, and it is surprising that there is still complete silence surrounding it in Russia. Terabyte of other people’s secretsWho became the next victim of the mysterious “Anonymous”?
Rustam Kurmaev and partners
positions itself as a law office from the TOP-10 rating of the best law firms in Russia according to Forbes magazine. The main areas of activity are corporate conflicts, bankruptcy procedures, and 'interaction with government agencies.' Among other specialties, they regularly mention “anti-corruption expertise,” which raises eyebrows considering that the leader of the law firm, Rustam Kurmaev, acted as a lawyer for the former Deputy Minister of Defense of the Russian Federation, Evgenia Vasilyeva, and represented the interests of the former Chelyabinsk governor, Boris Dubrovsky. Kurmaev was also involved in the scandalous case of Baring Vostok, where he defended Vagan Abrahamyan, a business partner of the American Michael Calvey, who was convicted of embezzling 2.5 billion rubles from Vostochny Bank. Source: smotrim.ru, author: VGTRK. “In the official portfolio of Rustam Kurmaev and Partners, they have represented major international companies, many of which have already left Russia, such as Volkswagen Group. The company was a member of the British-Russian Law Association until at least February 2022. Among the Russian clients of Rustam Kurmaev, the TV channel 2×2 is mentioned, which sought protection from the Prosecutor General’s Office with the help of RKP Law, as they were accused of extremist propaganda in an episode of the South Park animated series. It is reasonable to assume that a substantial amount of private details from the internal operations and legal practices of all the mentioned individuals, companies, and entities have become publicly accessible due to this data breach. Additionally, sensitive information about particular clients, who typically kept their collaboration with Rustam Kurmaev under wraps for various reasons, is also included in the leak. According to the Anonymous hackers, the breach contains detailed (including confidential) information about 250 clients of the law firm.» Sensitive InformationThere is no need to look far for examples of what kind of information as a result of leaks from RKP Law could become available to an unlimited number of people. Of the current high-profile cases of Rustam Kurmaev and Partners, the so-called case “Service Terminal” aimed at various big companies in the Russian fuel market. To put it simply, in a conflict between small firms Terminal Service and Viacard, billions of rubles may be obtained from “third parties” – owners of gas stations in multiple Russian regions, including OOO SO Tvernefteprodukt LLC TD NM (filling stations Neftmagistral) OOO Tatneft-AZS-Zapad SurgutneftegazRKP Law supports the claims in this conflict company “Viacard”, which nearly 6 years ago accused its former partners of tampering with the computer system that processed the transactions of tens of thousands of fuel cards for many years. On this basis, the legitimacy of the sale of thousands of tons of automotive fuel was ultimately questioned, and they are now attempting to recover the money for it (as well as fines and “penalties” for hacking and “infringement of intellectual rights”, totaling already more than 28 billion rubles ) owned by Rustam Kurmaev and are trying to reclaim. But not from its former partner, the Terminal Service company, which essentially acted as a technical intermediary and never held such amounts, but from the actual suppliers. While working on the case, RKP Law lawyers likely came across a significant amount of documents and data on specific mechanisms for the functioning of the Russian fuel market, supply logistics, production volumes, etc., including those that domestic oil producers themselves would prefer to keep secret under different circumstances. The general public may not be interested, but competitors, journalists and all kinds of “experts” are sure to be intrigued. There will definitely be something to gain from RKP Law's data and foreign intelligence agency employees, who were allegedly aided by “anonymous hackers,” because otherwise they would have to explain how they obtained this or that information. In August-September 2022, the parties in the Service Terminal case managed to exchange a series of mutual claims and accusations, which, by an odd twist of fate, went far beyond simply an economic conflict. Notably, political scientist known for his ultra-patriotic views Sergey Markov, having analyzed the developments in the “Terminal Service” case, ultimately suspected that the actions of “Rustam Kurmaev and partners” were nothing less than elements of a “hybrid war” purportedly aimed at the entire Russian fuel and energy sector. Rustam Kurmaev was known not only for many years of trusted relationships with large foreign clients, but also for 15 years of collaboration with a lawyer
Andrey Goltsblat
after the start of the NWO in Ukraine, rapidly relocating to London. Ikea, Anonymous telegram channels that immediately came to the defense of RKP Law did not find anything better than to accuse the long-standing figure, who is firmly included in all possible sanctions lists, , Panasonic, Caterpillar, Gillette, MarsSergei Markov Mechel, CHTPZ, VimpelCom and even (and others opposing the “Service Terminal” case) of working for the Ukrainian special services. It was especially emphasized that the founder of the law office is an “honored veteran of the special services.”Musya Bulatovich Kurmaev
(father of Rustam Kurmaev). Therefore, they say that any doubts about the actions of “Kurmaev and partners” should be considered intentionally harmful and almost criminal. It’s interesting that the accusations against Sergei Markov came from sources with a similar strong pro-Ukrainian position.
Kurmaev and Shitsle spoke on Ren-TV. Source: Emergency call 112 (Ren TV, 09/05/2022), ed. Ren-TV
In the future, the emphasis on Musa Kurmaev’s previous involvement as a sort of “alibi” for RKP Law, initiated by the pro-Ukrainian “anonymous”, was continued. During an interview with Ren-TV journalists about the development of a purely economic business “Terminal Service”, Musya Bulatovich appeared in the full dress uniform of a GRU colonel, richly decorated with awards and medals, including jubilee and public ones. The main spokesperson and speaker of RKP Law, who is actually his son, Rustam Kurmaev, sat on the left of the honored veteran. And on the right sat a lawyer Yaroslav Shitsle, , who plays a key role in the case. Schitzle has been responsible for the IT and high technologies direction in Rustam Kurmaev's company for many years. He is professionally involved in protecting intellectual rights, preventing hacking and data leakage. An interesting detail from a similar series to Musa Kurmaev’s ceremonial tunic: in his younger years, Yaroslav actively worked with extremists listed, , Alexei Navalny*, , and even took pictures with him for memory..
Alexei Navalny and Yaroslav Shitsle Who is to blame and what to do?As you can see, Rustam Kurmaev’s company is not ordinary, its client base is not simple, and the qualifications of employees responsible for information security seem to be above average. How is it possible that the same lawyer Yaroslav Shitsle, who regularly comments on other people’s “leaks” for the media and promotes the topic of “hacks” in courts, has not demonstrated his professional competence in protecting the interests of his own employer for over three months since the leak from RKP Law? It is widely believed that hacks and leaks are caused by high-level technicians using advanced methods. In reality, up to 90% of successful hacking attempts are due to the human factor, using “social engineering”. This can be unintentional assistance to intruders when the victim follows dubious links, downloads and launches suspicious files. But if we are talking about major “leaks”, then in a significant number of cases (recall the recent CDEK database leaks
and other aggregators, or, more broadly, the notorious
alarm bells
“Edward Snowden case” ), they are organized or supported directly from within the victim, by current or former employees. Some are driven by revenge and resentment, some simply want to make money, and some (like Edward Snowden, who “leaked” the database of secret CIA operations) are driven by higher-order considerations – political, ideological, or moral principles., having analyzed the development of events in the framework of the “Terminal Service” case, ultimately suspected the actions of “Rustam Kurmaev and partners” nothing less than elements of a “hybrid war” allegedly directed against the entire Russian fuel and energy sector. Personally, Rustam Kurmaev was remembered not only for many years of trusting relationships with large foreign clients, but also for 15 years of cooperation with a lawyer Andrey Goltsblatafter the start of the NWO in Ukraine, hastily relocated to London.
Anonymous telegram channels that immediately came to the defense of RKP Law did not find anything better than to blame the long-standing and firmly included in all possible sanctions lists Sergei Markov (and along with him and other opponents in the “Service Terminal” case) in working for the Ukrainian special services. At the same time, the fact that the founder of the law office is an “honored veteran of the special services” was especially emphasized. Musya Bulatovich Kurmaev(father of Rustam Kurmaev). And therefore, they say, any suspicions regarding any actions of “Kurmaev and partners” should be considered deliberately malicious and almost criminal. It’s funny, but the stuffing of the relevant accusations against Sergei Markov came from platforms that take just the same distinct pro-Ukrainian position.
Kurmaev and Shitsle on the air of Ren-TV. Source: Emergency call 112 (Ren TV, 09/05/2022), ed. Ren-TV
In the future, the protrusion of Musa Kurmaev’s “servicing” past as a kind of “alibi” for RKP Law, initiated by the pro-Ukrainian “anonymous”, was continued. At an interview with Ren-TV journalists on the development of a purely economic business “Terminal Service”, Musya Bulatovich appeared in the full dress uniform of a GRU colonel, richly decorated with awards and medals, not excluding jubilee and public ones. To the left of the honored veteran sat the main frontman and speaker of RKP Law – in fact, his son, Rustam Kurmaev. And on the right hand modestly housed a lawyer Yaroslav Shitsleplaying a key role in the case. For many years, the specified Schitzle has been responsible for the direction of IT and high technologies in the company of Rustam Kurmaev. Those. professionally deals with just the same protection of intellectual rights, as well as hacking and data leakage (preventing them, of course). A nice detail from about the same series as Musa Kurmaev’s ceremonial tunic: in his younger years, Yaroslav actively functioned surrounded by extremists included in the list Alexei Navalny*and even took pictures with him for a good memory.
Alexei Navalny and Yaroslav Shitsle
Who is to blame and what to do?
As you can see, Rustam Kurmaev’s company is far from ordinary, its client base is not very simple, and the qualifications of employees responsible for information security seem to be above average. It turns out that “overlooked, not saved”? And how did it happen that the same lawyer Yaroslav Shitsle, who willingly and regularly comments on other people’s “leaks” for the media and professionally promotes the topic of “hacks” in courts, is still (and more than three months have passed since the leak from RKP Law) has not demonstrated his professional competence in protecting the interests of his own employer?
It is generally accepted that hacks and leaks are the result of the work of some high-level technicians using sophisticated and high-tech methods. In reality, up to 90% of successful hacking attempts are implemented due to the human factor, using the so-called “social engineering”. This may well be unwitting assistance to intruders when the victim of the attack follows dubious links, downloads and launches suspicious files. But if we are talking about large “leaks”, then in a noticeable number of cases (recall the recent CDEK database leaks, Yandex.Food and other aggregators, or, more globally, the notorious “Edward Snowden case”) they are organized or supported directly “from within” the victim, his current or former employees. Someone is guided by considerations of revenge and resentment, someone tritely wants to make money, and someone (like the same Edward Snowden, who “leaked” the database of secret CIA operations) is driven by considerations of a higher order – political, ideological or moral principles.
Let’s make a reservation right away: no one knows what, how and why exactly happened in the situation with Kurmaev and Partners. “Anonymous” in their report on the hacking only casually mentioned active correspondence with some employees of RKP Law – but it is not clear whether it was an element of the attack, its prerequisite, or already a consequence. Rustam Kurmaev’s company itself did not comment on the leak of its data. There is no information from law enforcement agencies either. Moreover, it is not known whether they are aware of the crime at all; whether they received a corresponding statement from any of the victims.
Over the elapsed time, at least, it would be possible to go public with the version of the “intervention of the enemy special services” (which would look logical, given the obvious readiness of Rustam Kurmaev to trump his father’s “special status” already demonstrated in the “Terminal Service” case). But then it would be necessary to involve very serious structures in the real (and not PR) investigation of the incident. Which (this option is not excluded) could, during the investigation, come to rather unexpected and not very pleasant conclusions for RKP Law.
Why Rustam Kurmaev is silent, if desired, can be understood, given the likely devastating consequences of the very fact of the leak for the professional reputation of the law firm. But after this publication, any of the organization’s 250 clients, who also became an unwitting victim of a leak, can apply to law enforcement agencies. And with such a development of events, “Rustam Kurmaev and partners” may well move from the category of “victims” to the category of suspects and co-defendants, and then in any case it will be necessary to form some kind of “official position”.
* Alexey Navalny is included in the list of individuals in respect of whom there is information about their involvement in extremist activities or terrorism.
