Advertisement
Live broadcast

Experts spoke about cyberattacks targeting Russian infrastructure

"Solar": more than a quarter of cyberattacks in the world target Russian infrastructure
0
Photo: IZVESTIA/Sergey Lantyukhov
Озвучить текст
Select important
On
Off

Russia ranks second in the number of cyberattacks targeting it, while the United States ranks first, according to data from Solar 4RAYS, the Solar Group's cyberthreat research center, which were reviewed by Izvestia on December 6. Canada, Switzerland and Singapore are also among the most attacked countries.

According to experts, in the third quarter of this year, Russia accounted for 28% of triggers recorded by the network of sensors and hanipots, while the United States recorded 37% of all triggers.

According to experts, the global network of sensors and hanipots is a multitude of servers with one of the samples of popular software (software). The traps mimic various equipment and systems, from routers and surveillance cameras to industrial software. Fraudsters do not know that they have attacked the emulation and begin to develop the attack.

Keeping an eye out: How Russians are being attacked by stalking programs
In 2024, 25% more people will face such surveillance

As specified in "Solar", the top countries from whose IP-addresses cyberattacks were observed in Q3 was headed by India (31%). Next came Lithuania (24%), China (22%) and the United States (8%). A year ago, China (31%) was the leader.

"Most likely, this distribution is due to the fact that the countries where the most attacks come from have a prevalence of certain software and hardware that can be easily hacked by attackers to create botnets. For example, there are a lot of externally accessible servers, routers with unpatched vulnerabilities, etc.," the cyber research center analyst explained - Ilya Ayupov, an analyst at Solar 4RAYS, Solar's cyber threat research center, explained.

According to him, another possible reason is the popularity of virtual private servers (VPS) in these countries. Attackers can rent them to anonymize their attacks.

Most often, cybercriminals tried to hack into trap infrastructures using bruteforce, a password brute-force method. The share of such attacks amounted to 71%. A year ago, bruteforce accounted for 93% of attacks.

Earlier, on November 17, Evgeny Pankov, project manager of the .RU/.RF Coordination Center, told Izvestia that there is a steady increase in phishing attacks conducted via messengers, especially Telegram and WhatsApp (owned by Meta, which is banned in Russia). According to him, 2,374 domains imitating Telegram were blocked in Runet in the first 10 months of this year, which is 2.2 times higher than the same period last year. For the second messenger, the number of blocked domains increased more than five times - from 205 to 1,036.

Переведено сервисом «Яндекс Переводчик»

Live broadcast
Subscribe and get the news first
VK
Menu
Advertisement
RSS

Copyright for the iz.ru portal content visualisation system, as well as for the source data, including texts, photos, audio and video materials, graphic images, other works and trademarks, belongs to "MIC Izvestia" LLC

Partial quotation is possible only with a hyperlink to en.iz.ru

The site is operated with the financial support of the Ministry of Digital Development, Communications and Mass Media of the Russian Federation.

The advertiser is responsible for the content of any advertising materials posted on the portal.

The news, analytics, forecasts and other materials presented on this website do not constitute an offer or recommendation to buy or sell any assets.

Registered by the Federal Service for Supervision of Communications, Information Technology and Mass Communications. Certificates of registration Certificate of registration: EL № FS 77 - 76208 dated July 8, 2019. , Certificate of registration: EL № FS 77 - 72003 dated December 26, 2017.

All rights reserved © «MIC «Izvestia» LLC, 2025