Ukrainian hackers reportedly cracked a Russian military command-and-control platform that was partly administered through Telegram groups.
The target was Glaz/Groza, software used to coordinate drone operators, field commanders, and artillery units by shortening the gap between spotting a target and directing fire. According to disclosures from the "Where is Russia today" community, attackers extracted hundreds of pages of user manuals, training videos, a system patent, and other internal documentation. They also tampered with the platform's mapping data and injected images of the Ukrainian flag, leaving users unable to clear the changes or reconnect to the application.
The detail that draws the most scrutiny is not the breach itself but what enabled it: Groza's software updates and user support were reportedly distributed through Telegram channels. Running any part of a live battlefield system through a consumer messaging app is a significant operational security failure, and it hands attackers a relatively low-friction surface to monitor, intercept, or disrupt. The exposed patent adds another layer — architectural details about how the platform integrates with related military systems are now outside Russian control.
The full operational impact has not been independently verified. But the incident fits a pattern of consumer and semi-commercial tools finding their way into active conflict infrastructure, with the security tradeoffs becoming apparent only after something goes wrong.