I am reading from various reports that the Wannacry ransomware attack that has laid bare the deficiencies in the IT security of the NHS has also affected many Russian companies, not least Sberbank and the Russian railways.
Sberbank is a state-owned company. A lot of the most skilled and prolific hackers and IT security experts are Russian, many of whom will be living in Russia. Depending on whose toes have been trodden on at Sberbank or the other affected companies, some nasty people might well be deploying considerable resources in trying to find out the origins of this software. If so, don’t be surprised if those responsible are found. And then found again, some months later, badly decomposed in a shallow grave in a forest.
I doubt anyone will have much sympathy.