MIREA said that the number of cyberattacks and data leaks at enterprises is growing, and the level of digital literacy in Russia is quite low. In this regard, the rector of the university proposed to introduce a compulsory course on cybersecurity
Over the past few years, Russian enterprises have become much more likely to be exposed to cyber-attacks and face data leaks, so it is necessary to introduce mandatory cybersecurity lessons for their employees, according to a letter (from RBC) from the rector of the Russian Technological University MIREA Stanislav Kuj to the head of the Ministry of Digital Science Maksut Shadayev.
He proposed introducing a mandatory course on cybersecurity in state and municipal unitary enterprises, as well as recommending that businesses take similar measures.
The press service of MIREA confirmed to RBC that the rector sent an appeal to the minister, but has not yet received a response. “We see that the trend towards ‘home offices’ does not subside to this day, and many companies, to save costs, are abandoning offices and reducing their offline workplaces. This is a long-term trend that will only expand. The fact is that the staff work on their equipment, use smartphones and laptops without antivirus, personal mail, and instant messengers. Thus, it becomes a vulnerable link in the company’s security system. These trends are especially risky for unitary enterprises in the public sector, which have also become more likely to be exposed to cyberattacks and hacker hacks, ”the university noted.
“To reduce cyber risks and threats of personal data leaks, training the bulk of employees in the rules of digital literacy and the basics of information security allows. That is why the standard safety standards for teams should be supplemented by mandatory training on Internet security and the introduction of regulated employee liability for non-compliance with these rules, ”the MIREA rector said in a letter.
In his opinion, as part of such a course, it will be necessary to study the rules for handling spam mailing, hosting, cloud and disk storage of data, torrent resources, as well as teach forms of safe use of video cameras and sound commands. MIREA believes that employees should be certified once a year for knowledge of the basics of cybersecurity.
Kuj drew attention to the fact that the losses of the domestic market and the national economy from the actions of cyber fraudsters are growing. He stressed that the main culprits of personal data leaks remain company employees, who, according to him, account for about 80% of violations.
Last week, Deputy Prime Minister Yuri Borisov said that in the first half of 2021, the number of hacker attacks on a critical information structure (this includes communication networks and information systems of government agencies, the fuel, and economic complex, financial companies, and several other industries) exceeded the figure for the entire 2020 year. The Deputy Prime Minister noted that the scammers tried to paralyze the operation of the attacked infrastructures and “wreak havoc”.
On average, over the past year, one company faced 270 cyberattacks, which is 31% more than a year earlier, the consulting company Accenture found out. On average, 29 cyber attacks from this number ended successfully: hackers gained access to data, networks, or devices. That said, more than 80% of CEOs surveyed by Accenture reported that they have increased spending on cybersecurity over the past year.