RUB 25 billion will be allocated for state cybersecurity systems “Multiscanner”, “Anti-Phishing” and “Antifraud”. until 2030

It is planned to allocate more than 25 billion rubles for the development of state systems in the field of cybersecurity “Multiscanner”, “Anti-Phishing”, “Antifraud” and others, as well as the protection of state information systems (GIS). until 2030. The Ministry of Digital Development expects that this will make it possible to replace foreign solutions and increase the efficiency of existing systems. But market participants consider the planned investments to be overpriced, emphasizing that the result is far from guaranteed.

The Ministry of Digital Development intends to invest about 25.2 billion rubles in the development of cybersecurity. until 2030, follows from the materials for the national project “Data Economy”. So, 7.1 billion rubles. will be aimed at developing a new system for countering computer attacks, “Multiscanner,” based on GosSOPKA (the state system for detecting, preventing and eliminating the consequences of computer attacks, controlled by the FSB through the National Coordination Center for Computer Incidents, NKTsKI).

For the development of state systems “Antifraud” (countering fraudulent calls, Roskomnadzor) and “Anti-phishing” (blocking fraudulent sites, Ministry of Digital Development) a total of 3.7 billion rubles will be spent, and 2.4 billion rubles will be spent on external assessment of the security of key GIS. Another 12 billion rubles. will be directed to cybersecurity systems (cryptography, security measures, etc.). Kommersant’s interlocutor in the IT industry explains that we are talking about subsidies to trusted development centers under the Ministry of Digital Development, “such projects are closed to the wide market due to strict requirements.”

The Ministry of Digital Development expects that as a result, by 2030, all foreign means of protection will receive Russian analogues, Multiscanner will be able to process more than 90 million files per year, and the number of incidents related to security violations of key GIS will be reduced to zero.

The ministry clarified to Kommersant that “the project is still in progress” and the indicators may change. Roskomnadzor did not answer Kommersant.

The Ministry of Digital Development announced the development of the Multiscanner system at the end of October. It will become “an analogue of the free American service VirusTotal, which analyzes files and links for malware,” explained Deputy Minister Alexander Shoitov. The system is being developed by the National Technology Center for Digital Cryptography (established in 2023 by the Ministry of Digital Development and the FSB). The model of the system, according to the official, will be launched before the end of the year, in 2024 it is planned to supplement the system with new functions, and after 2025 it will “work in full force.”

The state systems “Antifraud” and “Antiphishing” were also launched recently – in January and July, respectively. The presentation of the Ministry of Digital Development notes that as a result of the implementation of Antifraud, the number of fraudulent calls in 2023 decreased by 38%, to 62.7 million. But the number of compromised personal data is growing this year: 303 million records versus 276 million for the entire 2022.

At the same time, the number of cyber incidents is decreasing. According to the NCCCI, 170 thousand of them were noted on critical information infrastructure (CII) over the past year, and 46.7 thousand for January-September 2023.

Informzashita believes that in the current version of the project the figures “look somewhat inflated” even taking into account inflation. Meanwhile, financing in itself does not guarantee any result, emphasizes Fedor Dbar, commercial director of Security Code.

If we take Multiscanner, for example, the most difficult and expensive part is the development of parameters, he explains. This, according to the expert, is carried out by special laboratories that study viruses and other malicious objects, form parameters and then load them into the scanner. Informzashita emphasizes that “serious foreign IT solutions have been developed for decades, but in Russia they need to be created and implemented in a number of industries by 2025.”

According to presidential decree of March 2022, government agencies and companies that are subjects of CII are prohibited from using foreign software, including as part of software and hardware systems, from 2025. And according to decree of May 1, 2022from 2025, government agencies and state-owned companies are prohibited from using protective equipment from “unfriendly countries.”

Tatiana Isakova