According to Provision of Central Bank of the Russian Federation No. 382-P,
money transfer operators are obliged to detect new fake resources leveraging
their brands and notify users accordingly.
phishing resources disguised as banks and financial institutions were blocked by CERT-GIB in 2015
phishing links are received by clients of financial institutions each month
new fake mobile apps appear every month
weeks - the average lifetime of one fake VK account, which is used by cybercriminals to act as official bank representatives in order to steal sensitive data
Brand Protection Case
In early 2015 rumors appeared in SMS and email spamming as well as on some websites alleging that Sberbank placed limits on withdrawing funds. This made people queue up to withdraw their money from the bank’s ATMs on a massive scale. To encourage public panic, the attackers distributed messages via numerous Internet forums seeking people who were interested to “stand in a queue” to specific bank offices.
Massive withdrawals could have caused major damage to the country’s largest bank.
Group-IB specialists provided 24/7 online monitoring of provocative announcements and promptly blocked the most popular topics (including messages seeking people to create artificial queues), as agreed upon by the Bank.