Scammers have increased the number of phishing emails and often tried to attack the infrastructure of the banks through available on the Internet entry points. Against this background, to reduce the damage to banks was possible thanks to the improvement of the overall level of cybersecurity in financial institutions, say the report’s authors.
“A significant portion of phishing emails are filtered on the mail gateway, and other components of the protection systems, resulting in the malicious message does not reach recipient”, — explained in the Central Bank.
The number of attacks grows the first year, confirms the Deputy Director of the audit Department of the company safety Digital Security Hleb Cerbov. Due to such dynamics, banks had to strengthen security measures and enhance requirements to control media. This has led, apparently, to reduce the number of successful attacks, says Chernov.
Business under the gun
The interest of fraud began to shift from individuals who are customers of banks, customers, legal entities, noted in the CBA. For 8 months the regulator has fixed the 36 companies who spread malicious software among legal entities.
“The growth of interest of malefactors to legal entities can be explained as weaker protection of small and medium business, and entry into effect of legislation to protect large organizations, critical infrastructure of the Russian Federation and toughening punishment for attacks on them,” according to the Central Bank.
The crooks have long since begun to show increased interest in infrastructure business, says Gleb Chernov. “Hackers cost-effective to attack those who are less protected. Previously, they focused on organizations because they were easier to penetrate from the inside. When the medium security level they grew up, it turned out that it became easier to attack banks. We are now seeing the return of interest in the organizations”, — said Chernov.
In Russia already there is not a single hacking group, “which would be engaged in theft from individuals using banking Trojans for personal computers”, noted in the last report, Group-IB (Forbes). However, from the accounts of legal entities funds from kidnap three groups — Buhtrap2, RTM and Toplel, list experts.
For cheating companies the scammers create a special professional resources such as accountants and CEOs, and use the remote banking services (RBS), payment systems and cryptocotyle, explained in Group-IB.