FEATURES OF RESTRICTED ACCESS INFORMATION LEAKS IN THE RUSSIAN FEDERATION
Abstract and keywords
Abstract (English):
According to official data, over the past year the number of personal data leaks has increased 4 times. The number of published personal data in 2023 exceeds the total population of the Russian Federation by 50 million. The study systematizes the statistics of information leaks in the context of impact factors and the composition of leaked user information in 2022-2023. In the course of analyzing statistical data from the largest vendors in Russia, the main characteristic features of personal data leaks in 2023 were identified and the vulnerabilities of domestic cyberspace were identified. The author identified the imperfections of legislative regulation of the processes of ensuring comprehensive protection of personal data and proposed directions for leveling the identified vulnerabilities.

Keywords:
personal data, information leaks, cyber incident, fraudsters, information infrastructure, cyber attack, digital portrait, external intruder, hybrid attack, political factor, compromise
Text
Publication text (PDF): Read Download
References

1. Panin O.N., Suleimenova R.D. Threats to the security of the digital profile of a citizen of the Russian Federation // Young scientist. – 2022. – No. 16 (411). – pp. 34-35. – EDN MUIMBO.

2. Information Security Department of the Central Bank of Russia: analytical materials on combating fraudulent practices in 2023. [Electronic resource]. – Access mode: https://cbr.ru/information_security/pmp/ (access date: 09/04/2023).

3. Expert and analytical center InfoWatch: Russia: leaks of restricted access information, 2022-2023. [Electronic resource]. – Access mode: https://www.infowatch.ru/sites/default/files/analytics/files/utechki-informatsii-ogranichennogo-dostupa-v-rossii-za-2022-2023.pdf (access date: 02/07/2024 ).

4. Filatova T.A., Gaisina A.R., Nazarov P.V. Directions for combating crimes using computer technologies in the Russian Federation // Kant. – 2023. – No. 4(49). – pp. 166-174. – DOIhttps://doi.org/10.24923/2222-243X.2023-49.31. – EDN KIJLQY.

5. Russian provider of information security protection services, GC Solar: “Personal data leaks: where you can find sensitive information about the company’s employees and clients.” [Electronic resource]. – Access mode: https://rt-solar.ru/services/jsoc/blog/3772/?ysclid=luprn0tbtm771806862 (access date: 02/07/2024).

6. Kaspersky Digital Footprint Intelligence: “On significant data leaks in Russia in 2023.” [Electronic resource]. – Access mode: https://dfi.kaspersky.ru/data-leakage-2023?reseller=kl-ru_dfi-web_leg_enterprise_oth___b2b_press-release_lnk_______&utm_campaign=dfi-web&utm_source=press-release&utm_medium=other&utm_term=textlink (access date: 02/07/2024).

7. Expert-analytical center InfoWatch: report on new projects in the field of biometric personal data. [Electronic resource]. – Access mode: https://www.infowatch.ru/analytics/daydzhesty-i-obzory/novye-proekty-v-oblasti-biometricheskikh-personalnykh-dannykh (access date: 09/03/2023).

8. FBK Cybersecurity: “Tightening sanctions for personal data leaks.” [Electronic resource]. – Access mode: https://fbkcs.ru/ujestochenie-shtrafnikh-sankciy-za-utechki-pdn (access date: 02/07/2024).

9. Bank of Russia: information security incidents (results of the 1st quarter of 2023). [Electronic resource]. – Access mode: https://cbr.ru/press/event/?id=15814 (access date: 09/03/2023).

10. Vlasenko V.E. Cyber attacks: how states react to incidents affecting the cybersecurity of information systems at the present stage of international information law // Young scientist. – 2021. – No. 48 (390). – pp. 208-211. – EDN PQGCCK.

11. Positive Technologies: report “Cybersecurity. Trends for 2022-2023.” [Electronic resource]. – Access mode: https://www.ptsecurity.com/ru-ru/research/analytics/ogo-kakaya-ib/ (access date: 09/01/2023).

12. Russian newspaper: “On increasing turnover fines for leaks of personal data of clients.” [Electronic resource]. – Access mode: https://rg.ru/2023/08/28/ostaviat-v-tajne.html?ysclid=luprrog3uv954853994 (access date: 02/07/2024).

13. SearchInform Risk and compliance management: leak of personal data and consequences. [Electronic resource]. – Access mode: https://searchinform.ru/resheniya/biznes-zadachi/zaschita-personalnykh-dannykh/utechki-personalnyh-dannyh/posledstviya/?ysclid=lup5autaa0598945573 (date of access: 02/07/2024).

14. WebsiteRating: 50 cybersecurity trends for 2023. [Electronic resource]. – Access mode: https://www.websiterating.com/ru/research/cybersecurity-statistics-facts/ (access date: 09/03/2023).

15. On personal data: Federal Law of July 27, 2006 No. 152. [Electronic resource]. – Access mode: https://www.consultant.ru/document/cons_doc_LAW_61801/?ysclid=luprjoevw3874488925 (date of access: 02/07/2023).

16. Federal Service for Supervision of Communications, Information Technologies and Mass Communications (Roskomnadzor): judicial practice for 2023. [Electronic resource]. – Access mode: https://new.rkn.gov.ru/activity/jurisprudence/p1268/ (access date: 02/07/2024).

17. Rossiyskaya Gazeta: the positions of Russia and China on cybersecurity issues largely coincided. [Electronic resource]. – Access mode: https://rg.ru/2021/07/15/pozicii-rossii-i-kitaia-po-voprosam-kiberbezopasnosti-vo-mnogom-sovpali.html?ysclid=lmf70b5s99932142437 (access date: 08/28/2023 ).

18. Agaev R.Sh., Agaev R.Sh., Grafov A.A. Security of information support in the economic security system // National security and strategic planning. – 2022. – No. 2(38). – pp. 98-104. – DOIhttps://doi.org/10.37468/2307-1400-2022-2-98-104. – EDN JLFFQV.

19. RTM Group: online fraud (judicial practice and key aspects). [Electronic resource]. – Access mode: https://rtmtech.ru/research/online-fraud-research/?ysclid=lmepdfenp1273256146 (date of access: 08/28/2023).

20. Positive Technologies: “Research of targeted attacks on Russian business in 2023.” [Electronic resource]. – Access mode: https://vc.ru/flood/317584-informaciya-reputaciya-dengi-politika-pochemu-hakery-atakuyut-rossiyskie-kompanii (date of access: 02/07/2024).

21. Varzin S.A., Matveev V.V. Ensuring information security in the healthcare system // National security and strategic planning. – 2023. – No. 3(43). – P. 19-56. – DOIhttps://doi.org/10.37468/2307-1400-2024-2023-3-19-56. – EDN ONKEFE.

Login or Create
* Forgot password?