TAdviser conducted large survey for a research of IIDF, Microsoft and Group-IB

In April, 2016 Microsoft together with Group-IB company and the Internet Initiatives Development Fund (IIDF) provided results of the research "Cyber Crime in Russia and Its Influence on National Economy".

In a research data of telephone interviews with representatives of 600 companies which were conducted by analytical center TAdviser were used. It became the second large work of TAdviser for a research of Microsoft: for the first time the center investigated plans of the companies for transition from Windows Server 2003 or 2003 R2 on more modern software.

In a research about cyber crime in Russia 58% of respondents of TAdviser – representatives of a segment of SMB, 42% - large business companies and government institutions. Respondents represent the following branches of the economy: finance and insurance, telecom, IT, retail, FMCG, industrial production, transport, power, etc. Heads of IT, heads of Information Security Services and their deputies participated in poll.

According to a research, the damage to economy of Russia from cyber crime in 2015 was 203.3 billion rubles or 0.25% of GDP of Russia. The direct financial loss was 123.5 billion rubles (0.15% of GDP of Russia), and liquidation costs of effects are more than 79.8 billion rubles (0.1% of GDP of Russia).

It is obvious that cyber crime causes not only direct loss to business and economy, but also constrains development of innovations. The large companies because of damage and need of mitigation of consequences of the attacks lose funds for investments into innovations and development. Startups, owing to the financial and technology reasons, are the least protected in the face of cyberthreats. Moreover, the beginning entrepreneurs are recovered after the attacks longer, – Margarita Zobnina, the Head of Department of researches of IIDF, the associate professor of Higher School of Economics National Research University, Candidate of Economic Sciences told.

Negative influence of cyber crime on development of innovations says the fact that losses from it were 22.8% of the total amount of financing of research activity of the budget of the Russian Federation about scale. So, a share of internal costs on research and development in GDP of Russia average 1.11%, in absolute measures in 2015 is 892.58 billion rubles.

According to poll, two thirds of the Russian companies consider that for the last three years the quantity of kiberprestuleniye increased on average by 75%, and the damage grew twice. At the same time in the short term (three years) respondents predict both growth of number of incidents, and damage from them for 173% and 192% respectively.

However experts see the return dynamics.

Today we observe a downward tendency of losses. At the same time, specialists of Group-IB fix sharp increase in number of incidents with the purposeful attacks, first of all, to banks where the direct loss is calculated by tens, and sometimes and hundreds of millions of rubles, –Ilya Sachkov, the founder and the CEO of Group-IB told. – We assume that some types of the purposeful attacks used in banks will be used by malefactors and in other industries. At the same time emergence of new types of threats can change radically not only the number of incidents, but also damage from them.

Survey results also showed high degree of awareness of business concerning risks of use of the non-licensed software. At the same time large and state companies worry about legal and financial effects more, in volume time as the SMB-companies worry reputational and technical risks more.

The companies are knowledgeable about threats, but in much smaller measure about methods of work of cybercriminals and methods of counteraction to crimes, –Ulyana Zinina, the director of corporate questions of Microsoft in Russia, Candidate of Law Sciences summarized. – As showed poll, only 19% of respondents consider that responsibility in fight against cyber crime should be distributed between business, representatives of the market of cyber security and the state. The international experience shows that public and private partnership becomes an effective method of fight against hi-tech crimes.

Among effective measures for counteraction to cybercrimes there are experts of Group-IB, the IIDF and Microsoft selected the following:

• increase in level of cyberliteracy (awareness on threats and methods of protection);
• obligatory disclosure of information on incidents;
• improvement of both international procedures of mutual legal assistance, and national legislation on corpora delicti and procedures of investigation;
• expansion of public and private partnership.