The expert gave advice on data protection on the Web

Attackers can gain access to user data, for example, through phishing or malware, Dmitry Galov, head of Kaspersky GReAT in Russia, told Izvestia on March 30. He noted that it was therefore important to combine technical and non-technical protection measures.

"First of all, [it is necessary] to use security solutions, they will not allow malicious software to be installed on the device, they will notify you of an attempt to go to a phishing page, and they will warn you that fraud complaints have been received at the incoming number. However, there are several recommendations that will also help improve the security of personal data," he explained.

In particular, you should use complex and different passwords for your accounts, and set up two-factor authentication (2FA) in those services that allow it.

"This approach will not allow attackers to gain access to the account, even if the password turns out to be compromised (provided that the user does not provide the fraudsters with the 2FA code)," the expert said.

With new code: what attacks to expect from hackers in 2025

The cyber threat landscape could change significantly from next January

He reminded that if the call seems questionable, then you should immediately end it. You can't tell anyone the confirmation codes from SMS and push notifications.

"Do not follow links or download files from questionable communications — in mail, messengers, social networks. Attackers can distribute malicious programs under the guise of a variety of supposedly useful applications and even under the guise of photos/videos. Please note the extension of the sent file (which is where its name ends): pictures, photos, and videos cannot have the .apk or .The exe indicates that the user has been sent a program," Galov explained.

You should also look at the site name in the address bar: if it differs from the original even by one letter or the "wrong" domain zone is indicated there, this is a reason not to enter data on such a resource.

The expert advised downloading programs and applications only on official resources: in app stores or on the websites of development companies, and not downloading programs at the request of interlocutors in messengers.

It is necessary to regularly update the installed programs and the operating system on a personal computer and smartphones. Along with the updates, the developers close the discovered vulnerabilities that can be used by attackers to carry out attacks.

"If it did happen that the attackers were able to gain access to an account in any service or steal confidential data, it is important to contact the support service of this service as soon as possible - messenger, bank, social network, etc. — and follow their instructions. In addition, it would not be superfluous to check the devices for malicious programs using security solutions," concluded Galov.

Earlier, on January 16, it was reported that Roskomnadzor had recorded 135 cases of personal data databases being distributed on the Internet. They contained more than 710 million records about Russians.