Nice one!23 Feb 2026 20:57
According to reports in February 2026, Ukrainian cyber activists and volunteer groups successfully tricked Russian soldiers into revealing their map coordinates and Starlink terminal data by offering to unlock their blocked Starlink devices.
The operation was described as a "honeypot" designed to take advantage of the reliance of Russian forces on Starlink terminals for battlefield communication and drone coordination, which had been rendered useless by a new, more effective geofencing, or "brick mode," implemented by Ukraine and SpaceX.
Key Details of the Operation:
Perpetrators: The operation was carried out by a Ukrainian group known as the "256th Cyber Assault Division," in cooperation with InformNapalm and MILITANT.
The Lure: The group set up a network of fake Telegram channels and bots that pretended to be able to register, activate, or "whitelist" unauthorized or disabled Starlink terminals for a fee.
Data Harvested: In their desperation to restore connectivity, Russian soldiers shared sensitive data, including their location coordinates (latitude and longitude), terminal ID numbers, and account details.
Consequences for Russia:
Artillery Strikes: The collected coordinates were passed to Ukrainian military and defense intelligence, enabling targeted drone and artillery strikes against the Russian units.
Equipment Disabling: The terminal IDs were reportedly sent to SpaceX to permanently disable (or "brick") the devices.
Financial Loss: The Russian soldiers paid approximately $5,870 in fees to the scammers, which the Ukrainian groups said would be used to purchase drones for their own forces.
Scope: The group claimed to have identified 2,425 Starlink terminals, ranging from the Crimean peninsula to eastern Belarus.
This operation occurred amid a wider crackdown on Russian, unauthorized use of Starlink in the warzone,, which left Russian troops struggling with communication and coordination.
Sign In
Follow the stocks
