Search This Blog

Showing posts with label Runet. Show all posts

Facebook, Twitter and Telegram will stop working in Russia due to the weak Runet

Participants of the Zoom conference on the digital future of the country said that the transition to remote work and mass online training became forced testing of Russian Internet services and platforms, most of them failed the tests. The meeting was attended by leading representatives of the Internet industry and experts in digital technology.

It turned out that neither schools nor universities are ready for the online format. "My three children and I experienced the whole "charm" of distance learning: all day we do not so much do tasks as solve technical problems with non-working cameras, communications," said Natalia Kaspersky, President of the Info Watch group of companies.

Ilya Massukh, a member of the software expert Council at the Ministry of Communications and Mass Media, expressed the opinion that Russia is not yet ready to replace "live" services with digital ones. He added that the servers of the Pension Fund of the Russian Federation fell on April 1. "Even these servers, which are designed for heavy load, did not pass the test."

Recently, Moscow authorities reported that they would monitor the movements of citizens through the introduction of QR codes and even developed a special application for this. According to them, now the introduction of QR codes is necessary to monitor compliance with the self-isolation regime. But experts are confident that when the pandemic ends, it will be necessary to re-introduce personal data protection.

It is interesting to note that the Deputy of the State Duma Anton Gorelkin proposed to prioritize the traffic of domestic sites and services for the time of self-isolation. In case of overload of communication networks due to the transition of citizens to remote work, the quality of access to Facebook, Twitter and Telegram and other services that do not comply with the requirements of Russian law will decrease (Facebook and Twitter do not transfer the data of local users to Russia, and Telegram is blocked for not transmitting the FSB encryption keys). The Ministry of Communications and Mass Media and the Federal Antimonopoly Service confirmed receipt of proposals.

Previously, Anton Gorelkin was the author of an initiative to limit the share of foreign capital in significant Internet resources to 20%, which forced Yandex to change the company's management structure.

Experts have found the most vulnerable places in Runet

Personal accounts of Runet users in various services, including Internet banks, turned out to be the worst protected from hackers. This is the opinion of Positive Technologies specialists.
After analyzing 38 websites of various organizations, including IT companies, government agencies, financial and telecommunications organizations, Positive Technologies employees concluded that nine out of ten web applications in Runet are vulnerable to hacker attacks.

Despite the fact that the situation has improved compared to the previous year, half of the sites contain "high-level" vulnerabilities. In 2019, there were 22 vulnerabilities per application, which is one and a half times lower than in 2018. According to Positive Technologies, the probability that data will leak from applications to the network is 68%, unauthorized access is possible in 39% of cases and authentication system weaknesses were found in 45%.

Also, hackers often hack applications in the banking sector. The protection of apps of credit organizations works only in 40% of cases.

According to experts, this is due to the fact that the dynamics of the main updates of the program is quite high. He noted that the system does not have time to “undergo full training” and automatic configuration.

Applications of government agencies turned out to be the most vulnerable to hacker attacks. Experts stressed that funding for this sector was low. At first, the tenders were won by those who requested the lowest price. And then expenses were reduced even more — by hiring students, for example.
Experts noted that it is quite difficult to protect web applications. Sometimes systems are used in monitoring mode, and real people monitor this. They have to determine whether the attack occurs or not.

“A 24-hour web service requires at least four operators, and this is from five million rubles a year ($78,700),” said Rustem Khairetdinov, vice president of InfoWatch Group. There is no way to hire such a staff of specialists in small companies and regional government agencies.

Roskomnadzor began the installation of equipment for the isolation of the Russian Internet (Runet)

The Federal Service for Supervision of Communications, Information Technology and Mass Media (Roscomnadzor) started testing the equipment for implementation of the law on the isolation of Runet. The pilot project is planned to be completed by mid-October.

According to the head of Roskomnadzor Alexander Zharov, all major mobile operators in Russia have joined the Roskomnadzor project for testing the equipment and now the equipment is being installed.

Zharov said that the experiment will be carried out on the equipment of the manufacturer that has already passed all the tests. Now there is an experiment with two more manufacturers, he added. According to Zharov, among them is company It is interesting to note that the development of the company was recognized as the most effective in the tests of blocking the Telegram messenger.

"We will be testing it for several weeks from the end of September," Zharov said. According to him, the experiment will not be conducted in all of Russia, but testing will take place in one of the regions. The name of the region was not disclosed.

The head of the Service said that they would tell about the results of the experiment in mid-October, but so far he cannot disclose all the details.

"My reluctance to speak is due solely to information security issues," he stressed.
Also, during the conversation with journalists Zharov said that the creation of a Center for monitoring and managing a public communications network is proceeding as planned.

In November, the law on the isolation of the Runet, adopted in the spring, will come into force. According to the document, Roskomnadzor will be able to control all data transmission points abroad and traffic routing using special equipment. Although the law will enter into force in November, Roskomnadzor began to prepare in advance the rules for its application.

Recall that on May 1, Vladimir Putin signed a law on the isolation of the Runet. According to this law, Roskomnadzor assumes all the authority for managing networks in case of threats to the Russian Internet. In addition, Roskomnadzor has the right to directly block websites with prohibited information.

The Kremlin called the document a precautionary measure. Federation Council speaker Valentina Matvienko stressed that the authorities do not intend to restrict Internet access to Russians.
The Ministry of Сommunications has identified a list of threats in which the Runet can go into a centralized control mode. In particular, when there are threats to integrity (when it is impossible to establish a connection between users), stability (when part of the equipment fails or natural or man-made disasters occur) and security (when someone tries to break into the equipment of providers or has a “destabilizing internal or external information impact” on communication network).