The expert spoke about a new wave of cyber attacks on Russian business

The number of cyber attacks on Russian companies doubled in 2025, with attackers increasingly targeting not only extortion, but also direct damage to businesses. Dmitry Pilipenko, Deputy General Director of LANSOFT IT holding, told Izvestia on May 21.

According to him, modern attacks are increasingly accompanied not just by information theft, but by data deletion in order to make infrastructure restoration as difficult as possible and increase financial losses for companies.

"Against the background of growing threats, Russian business has become much more active in investing in information security. This is due to both an increase in the number of attacks and the departure of Western information security vendors, after which a large niche for domestic developers was freed up in the market," said Pilipenko.

Dealing with technology: second-hand gadgets are increasingly being used for DDoS attacks

Viruses deliberately infect not only laptops and smartphones, but also "smart" coffee makers and vacuum cleaners.

At the same time, Pilipenko stressed, the accelerated implementation of Russian solutions in itself creates new risks. As the popularity of domestic products grows, so does the interest of hackers in hacking them. According to him, the speed of implementation should go hand in hand with secure development, DevSecOps practices and independent code audit. Otherwise, the market simply changes one attack vector to another.

Separately, the expert noted a sharp increase in the role of artificial intelligence (AI) in the field of cybersecurity. According to him, neural networks are actively used today by both defenders and intruders. Companies are implementing large language models to automate the operation of SOC centers, analyze incidents, filter false alarms, and accelerate threat response. However, the same technologies are also used in cybercrime — to create personalized phishing, generate malicious code and deepfakes.

Against this background, a separate direction is being formed to protect the AI systems themselves from attacks related to data substitution, prompt injections and attempts to manipulate models. Pilipenko called the transition of the information security industry to platform solutions another market trend. After the departure of Western suppliers, companies faced the problem of integrating a large number of individual tools.

On October 9, RTM Group announced that hackers had begun attacking Russian companies through smart gadgets. They began to gain access to confidential information from Russian enterprises using portable speakers, charging stations, and heated mugs.