"We must understand that the cybercrime we are fighting

[tanjimajuha20]

The damage from cybercrimes in Russia was discussed by experts in the information security (IS) market at SPIEF 2024. Igor Lyapunov, CEO of Solar, a company specializing in the development of technologies for protecting information assets, reported that, according to the Ministry of Internal Affairs, the damage from cybercrimes in 2023 amounted to 156 billion rubles. At the same time, the volume of the domestic IS market for the same period amounted to 145 billion rubles.
is a huge business. There is uae whatsapp resource no "silver bullet", it is a constant competition between armor and projectile. The only way is a quick response to new methods of criminals. For example, we can use the capabilities of artificial intelligence to analyze calls to identify indicators of telephone fraud," said Igor Lyapunov.

Leading engineer of CorpSoft24, a company offering comprehensive cloud solutions for various business categories, Mikhail Sergeev believes that it is not worth comparing damage from crimes and the market size: "Damage is primarily the costs incurred, which may not even exist, and the market size depends on many factors, such as the mass departure of foreign vendors, cyberattacks on businesses, and tightening of industry regulators' requirements. If the goal is to increase the size of the information security market, then the easiest way is to increase business spending on cybersecurity."

Deputy CEO of the Garda Group of Companies Rustem Khairutdinov explained why it is impossible to link the market size with the damage from cybercrimes: "The balance between them cannot be changed. Let's imagine that a grandmother, motivated by fraudsters, took out a loan from a bank for 1 million rubles and gave it to the fraudsters - this is considered damage. At the same time, the loan is not converted into the information security market - this same grandmother will not take out the same loan and buy antiviruses with this money."

Vasily Stepanenko, CEO of the cloud provider Nubes, is confident that it is necessary to separate the damage from the activities of cybercriminals in relation to legal entities and individuals: "Regulators have set high requirements for legal entities to protect the personal data of subjects at the expense of the financial resources of the legal entities themselves. Increasing the level of cyber literacy of the population should be a state task. And individuals practically do not buy means of protection, while they are victims of cybercriminals and are included in those same 156 billion rubles of damage. It is not so important to compare the damage and the volume of the information security market, it is more correct to look at the value of the information that has become the subject of an attack, and the funds spent on its protection. Here there should be a balance."

Igor Lyapunov also noted a number of factors that make it difficult to combat digital crime: "Firstly, the vast majority of call centers and other fraudulent infrastructure are located outside the country, and in the current political conditions, Russia has limited capabilities to combat cross-border crime. Secondly, data leaks provide enormous assistance to attackers, which politically motivated cybercriminals collect in single databases, creating dossiers on potential victims. The third problem is that while the state and business are trying to protect data from leaks, the direct owners of this data - that is, citizens, employees and clients of organizations - have little interest in protecting it, and are ready to compromise sensitive information for the sake of participating in a profitable sale."

Andrey Mishukov, CEO of JSC Infozashchita (iTPROTECT), agreed with the factors cited by Igor Lyapunov: "This, in my opinion, is a correct analysis of the market and the situation with fraud in the Russian Federation. It is very difficult to choose the main or secondary problems; there should be a set of measures or a whole "process" system for identifying and responding to new methods of fraud with well-developed organizational, legal and technical methods of countering threats. Such a system at the state level could unite different aspects and departments that block fraudulent risks."

Alexey Kubarev, Security Director of the cloud provider T1 Cloud, noted the difficulties of implementing the principle of inevitable responsibility: "This is due to the complexity of attributing offenders in the presence of a wide range of effective anonymization tools, the difficulty of achieving the disadvantage of committing a crime due to the relatively low thresholds of knowledge and skills that are necessary to enter this activity. The low cost of tools for committing cybercrimes, the abundance of potential unprotected victims at any time and the ability to commit malicious acts anywhere in the world, as well as high economic results from successful offenses - all this affects the attractiveness of cybercrime."