According to Provision of Central Bank of the Russian Federation No. 382-P,
money transfer operators are obliged to detect new fake resources leveraging
their brands and notify users accordingly.


phishing resources disguised as banks and financial institutions were blocked by CERT-GIB in 2015

50 000

phishing links are received by clients of financial institutions each month


new fake mobile apps appear every month


weeks - the average lifetime of one fake VK account, which is used by cybercriminals to act as official bank representatives in order to steal sensitive data

Brand Protection Case


In early 2015 rumors appeared in SMS and email spamming as well as on some websites alleging that Sberbank placed limits on withdrawing funds. This made people queue up to withdraw their money from the bank’s ATMs on a massive scale. To encourage public panic, the attackers distributed messages via numerous Internet forums seeking people who were interested to “stand in a queue” to specific bank offices.


Massive withdrawals could have caused major damage to the country’s largest bank.


Group-IB specialists provided 24/7 online monitoring of provocative announcements and promptly blocked the most popular topics (including messages seeking people to create artificial queues), as agreed upon by the Bank.

Intelligence-driven brand protection

Obtain objective analysis of cyber-threats targeting your trademark and action plan to eliminate them – for free.
By sending this form I hereby grant consent to Group-IB to process my personal data
Thank you! We will get back to you soon for detailed information.

Report an incident

24/7 Incident Response Assistance +7 495 984-33-64

* Your data is protected by Privacy Policy
Thank you!
We will contact you soon.