Armenia TV: 19.1% of What Armenians Watch
Confirmed - Market Data Confirmed - DNS Records
Armenia TV is not a minor broadcaster. It commands 19.1% of Armenia's television market share -- nearly one in five viewers. It shapes public opinion, frames political narratives, and determines what millions of Armenians see as news. This is the most powerful information channel in the country.
Its email infrastructure runs through Yandex.
| Broadcaster | Market Share | MX Records | Email Provider | Server Location |
|---|---|---|---|---|
| Armenia TV | 19.1% | mx.yandex.ru | Yandex (Russian) | Russia |
MX records are the DNS entries that determine where a domain's email is routed. When Armenia TV's domain resolves its mail exchange, it points to mx.yandex.ru -- Yandex's mail servers, physically located in Russia, operated by a Russian company, subject to Russian law including SORM (System for Operative Investigative Activities), Russia's domestic surveillance framework.
This means every email sent to or from Armenia TV's corporate accounts transits through Russian infrastructure. Editorial decisions, source communications, internal discussions about coverage -- all of it flows through servers where Russian intelligence services have legal access under Russian law.
23 Breaches: The Credential Catastrophe
Confirmed - Breach Data
The email address armeniatv@mail.ru -- a mail.ru address, another Russian provider -- has appeared in 23 separate publicly known data breaches. Twenty-three. The passwords found across these breaches paint a picture of security that can only be described as non-existent.
| Email Address | Provider | Breaches Found | Passwords Discovered | Security Assessment |
|---|---|---|---|---|
| armeniatv@mail.ru | Mail.ru (Russian) | 23 | 123456, password, qwerty, DEFAULT | Catastrophic -- world's most common passwords |
| armenia.tv@mail.ru | Mail.ru (Russian) | Multiple | 094960880 | Critical -- password is a phone number |
Let that sink in. The country's dominant television broadcaster uses: 123456 -- the world's most breached password, documented across Armenian government systems in Investigation #1. password -- the second most common password globally. qwerty -- the keyboard pattern that every security guide since 2005 has warned against. DEFAULT -- literally the word "default," suggesting a password that was never changed from its initial setup.
This is not poor security. This is the absence of security. No password policy. No credential rotation. No multi-factor authentication. No one watching. For twenty-three breaches, no one changed the passwords.
094960880: When Your Password Is Your Phone Number
Confirmed - Breach Data
The second Armenia TV email address -- armenia.tv@mail.ru -- was found with the password 094960880. The format 094-XX-XX-XX is an Armenian mobile phone number pattern, where 094 is a carrier prefix.
| Password | Format Analysis | Implication | |
|---|---|---|---|
| armenia.tv@mail.ru | 094960880 | 094 = Armenian mobile prefix | Password is someone's personal phone number |
Using a phone number as a password is a security failure on multiple levels. Phone numbers are public or semi-public information. They appear in business cards, contact directories, social media profiles, and WhatsApp. Anyone who has the phone number of the person who set this password can access Armenia TV's mail.ru account.
But the deeper issue is what this reveals about institutional culture. This is not a personal Gmail account. This is the corporate email identity of the country's most-watched broadcaster. And someone set the password to their personal phone number, on a Russian email service, and no one ever reviewed it.
Janibekyan on Russian Email
Confirmed - DNS Records Confirmed - Breach Data
The pattern extends beyond Armenia TV's corporate accounts. Prominent media figures associated with Armenian broadcasting use Russian email infrastructure for professional communications.
Janibekyan -- one of the most recognized names in Armenian entertainment and media -- operates on Russian email services. This is not unusual in the Armenian media landscape. It is the norm. Russian email infrastructure (mail.ru, yandex.ru) has been the default communication platform for Armenian media professionals for decades, creating a dependency that predates any current political alignment.
| Pattern | Scope | Infrastructure | Dependency |
|---|---|---|---|
| Corporate broadcaster email | Armenia TV (19.1% market share) | mx.yandex.ru | Russian MX routing |
| Corporate contact email | armeniatv@mail.ru | Mail.ru | Russian mailbox provider |
| Secondary corporate email | armenia.tv@mail.ru | Mail.ru | Russian mailbox provider |
| Media personality email | Janibekyan | Russian email services | Russian personal communications |
The entire communication chain -- from corporate MX records to individual staff accounts -- runs through Russian infrastructure. This is not one compromised account. It is a systemic dependency.
The Russian Email Ecosystem: Not Just Media
Confirmed - DNS Records Pattern Analysis
As documented in Investigation #7 and Investigation #14, Russian email dependency is not limited to media. Armenia's Defense Minister uses a Moscow-hosted email. Government agencies route through mail.ru and yandex.ru. But the media dependency is uniquely dangerous because of what media controls: the narrative.
| Sector | Russian Email Dependency | Risk Level | Why It Matters |
|---|---|---|---|
| Military/Defense | Defense Minister on Moscow email | Critical -- operational security | Military communications interceptable |
| Government | Multiple agencies on mail.ru/yandex | High -- policy communications exposed | Governance communications interceptable |
| Media (Armenia TV) | MX records -> mx.yandex.ru, mail.ru accounts | Critical -- information sovereignty | News narrative communications interceptable |
| Border Security | Bavra checkpoint on mail.ru | Critical -- border operations | Border operations interceptable |
When a country's military, government, media, and border security all communicate through a single foreign country's infrastructure, the word for that is not negligence. It is dependency. And when that foreign country is Russia -- a country that has historically used information control as a tool of influence in its near abroad -- the dependency becomes a strategic vulnerability.
PSRC: The License to Silence
Confirmed - Regulatory Records
The Public Services Regulatory Commission (PSRC) is the Armenian government body that controls broadcast licensing. Every television and radio station in Armenia operates at the pleasure of the PSRC. It grants licenses. It can revoke licenses. It sets the terms of who can broadcast and under what conditions.
This regulatory structure creates a choke point. The PSRC does not need to censor content directly. It controls something more fundamental: the right to exist as a broadcaster. A station that displeases the authorities does not face content removal. It faces license revocation -- the complete elimination of its ability to operate.
| Regulatory Body | Power | Scope | Accountability |
|---|---|---|---|
| PSRC (Public Services Regulatory Commission) | Grant and revoke broadcast licenses | All TV and radio in Armenia | Government-appointed commissioners |
The combination of Russian digital infrastructure and centralized Armenian licensing creates a two-layer control system. Russia can monitor communications. The Armenian government can revoke the right to broadcast. Between them, the space for genuinely independent media narrows to almost nothing.
Shoghakat TV: When the License Disappears
Confirmed - Regulatory Records Confirmed - Media Reports
Shoghakat TV was an Armenian television channel affiliated with the Armenian Apostolic Church. It operated under a broadcast license granted by the PSRC. That license was not renewed. Shoghakat TV ceased broadcasting.
| Broadcaster | Affiliation | Status | Mechanism |
|---|---|---|---|
| Shoghakat TV | Armenian Apostolic Church | Shut down | PSRC license non-renewal |
The Shoghakat case demonstrates that license revocation is not a theoretical power. It is an exercised power. A broadcaster associated with the Armenian Church -- one of the oldest and most established institutions in the country -- lost its ability to broadcast through a regulatory decision.
The message to other broadcasters is clear: your license is not permanent. Your right to broadcast depends on regulatory approval. And regulatory approval depends on maintaining an acceptable relationship with the authorities. This creates self-censorship that is more effective than any direct censorship could be, because it is invisible. Broadcasters do not need to be told what not to say. They understand that saying the wrong thing could mean the end of their license.
The Complete Picture: Information Control Architecture
Pattern Analysis
When you combine all the findings, a complete information control architecture emerges:
| Layer | Controller | Mechanism | Effect |
|---|---|---|---|
| Infrastructure | Russia (Yandex, Mail.ru) | MX records, email hosting | All communications interceptable by Russian intelligence |
| Credentials | Nobody (123456, qwerty, DEFAULT) | Zero security culture | 23 breaches -- anyone can read the emails |
| Licensing | PSRC (Armenian government) | Broadcast license control | Any station can be shut down at will |
| Self-censorship | Broadcasters themselves | Fear of license revocation | Content filtered before it airs |
Layer one: Russia can read everything. Layer two: so can anyone with a search engine and access to breach databases. Layer three: the Armenian government decides who gets to broadcast. Layer four: broadcasters censor themselves to keep their licenses. Four layers. Not one of them protects the public's right to independent information.
Why This Matters More Than Passwords
Pattern Analysis
OWL's earlier investigations documented the 123456 password appearing across Armenian government systems, border checkpoints, military infrastructure, and offshore shells. Those findings were about security negligence. This investigation is about something deeper: information sovereignty.
When 19.1% of a country's television market routes its email through a foreign intelligence target, the security of those emails is almost secondary. Even if Armenia TV used strong passwords, even if it implemented multi-factor authentication, its communications would still transit through Russian servers subject to Russian law. The vulnerability is architectural, not credential-based.
A country that cannot control where its news media's communications are routed cannot claim information sovereignty. It does not matter what Armenia TV broadcasts if Russia can read every email that shaped the editorial decisions behind that broadcast. It does not matter what investigative reporters discover if their source communications transit through mx.yandex.ru.
The passwords are the symptom. The MX records are the disease. And the PSRC license system is the cage that prevents the patient from seeking treatment.
What Would Independence Look Like?
For context, this is what media digital sovereignty would require -- and what Armenia currently lacks:
| Requirement | Current State | Independent State |
|---|---|---|
| Email infrastructure | mx.yandex.ru (Russian) | Armenian or EU-hosted MX servers |
| Email provider | mail.ru (Russian) | Self-hosted or allied-nation provider |
| Credential security | 123456, password, qwerty | Enforced password policy + MFA |
| Broadcast licensing | PSRC -- centralized, government-controlled | Independent regulatory body with judicial oversight |
| Source protection | Communications transit Russian servers | End-to-end encrypted, domestically routed |
Every item in the "Independent State" column is technically achievable. None of it is expensive. EU-hosted email costs the same as Yandex. Password policies are free. Independent broadcast regulation exists in dozens of democracies. The barriers are not technical or financial. They are political.
Methodology
This investigation is based on DNS MX record analysis of Armenian media domains; publicly available breach databases; PSRC regulatory filings and license records; television market share data; and open-source intelligence on Russian email infrastructure and SORM surveillance capabilities. No systems were accessed, penetrated, or tested. OWL does not encourage unauthorized access to any system.