Cybersecurity lacks defenders – Kommersant FM
[ad_1]
Two-thirds of Russian companies in 2023 faced a shortage of cyber defense specialists and were at the same time subject to attacks. As Forbes writes, citing a study by MTS Red, 62% of respondents said there is a shortage of qualified information security personnel, and almost every third respondent indicated that full-time IT specialists do not have enough time to solve the existing volume of problems. At the same time, every fourth company dealt with serious hacking attempts; most often, businesses in 2023 became victims of phishing, social engineering and DDoS attacks.
For example, Alexey Petropolsky, general director of the Urvista law firm, found himself in a similar situation: “We have IP telephony, some call centers at one point began to disconnect all the company’s phones, and it was simply impossible to get through to us. The second half of the trouble began when our site began to be overloaded with frequent requests. For two weeks we were looking for IT specialists who would correct the situation. As a result, we found guys who deal with cybersecurity at the state level.
It cost about several million rubles, but during this time we lost even more money than we paid. Of course, we have IT specialists both outsourced and in-house, but they simply threw up their hands, saying, what can we do if we need comprehensive solutions at the level of a powerful cybercrime service. Looking for such specialists on staff, firstly, is impractical, and secondly, it costs a lot of money.”
According to MTS Red, almost every fourth Russian company in 2023 could not find domestic information security solutions whose quality would meet their objectives. 17% were unable to renew licenses and technical support of foreign vendors. Problems must be solved first of all by significant investments in existing specialized personnel, says the executive director of Transasia Logistics, Kirill Latinsky: “There have been no attempts at cyber attacks on our company, but we know that a number of our partners and competitors have had similar attacks, and, unfortunately, they were successful for those who did them.
We, in turn, constantly invest in cybersecurity and in general in the development of IT infrastructure. For 2024, the budget for this parameter increased by 21% compared to 2023. Regarding the personnel involved in this, it is somewhat easier for us, because our company is international. The head office is located in Tashkent, IT specialists are based there, and there is no shortage of personnel due to the fact that many relocants settled in the former Soviet republics.”
The authorities, meanwhile, intend to significantly tighten penalties for businesses for personal data leaks. In January 2024, the State Duma adopted a package of amendments in the first reading, according to which companies face a minimum administrative fine of 3 million rubles. up to 5 million rubles, and in case of repeated leakage – turnover fines of up to 3% of revenue for the calendar year or for part of the current year, but not less than 15 million rubles. and no more than 500 million rubles. It is not easy to fully ensure control in this area, says Arthur Muradyan, CEO of tour operator Space Travel: “Our company, in particular, has encountered attacks when cybercriminals are looking for opportunities to damage or gain access to databases and ask, for example, for money to unlock the system .
We had such a situation, part of the array was compromised, but then, fortunately, backups were deployed on time, however, this led to a real loss, loss of performance for almost three days. After this, of course, further measures are needed to strengthen security. IT budgets grow two to three times every year. It is now impossible to completely prevent the leakage of personal data. I’m about 4/5 satisfied with the current team. There is always an opportunity to be better, stronger and do more. But the reality is that it takes work and time and the most important thing is that it is very, very expensive, but you have to invest in it.”
Russian companies have increased spending on cyber protection; more than half of all enterprises in 2023 increased budgets for these purposes by an average of 20%, according to a study by Yandex Cloud and Business Solutions and Technologies. Most companies have invested in software and purchasing licenses for new cyber protection services. Moreover, businesses have begun to increasingly use machine learning models against hacker attacks, and cloud technologies for privacy.
Everything is clear with us – Telegram channel “Kommersant FM”.
[ad_2]
Source link
