A few years ago, the problem of information security – passwords, viruses, network scammers – concerned only those of us who lived on the Web, that is, made important transactions and made purchases there. After the outbreak of the pandemic, online has become the de facto main medium for shopping and even transactions with documents. This means that cybercriminals threaten everyone. This year the Moscow government has prepared a memo on the basic principles of Internet security – here are its key points.
The rise of cybercrime – that is, fraud, embezzlement and other offenses committed over the Internet – has been worrying law enforcement for several years. Measures to eradicate this type of crime, of course, are being taken: for example, in 2020, a specialized department appeared in each district department of internal affairs. Alas, these departments are not idle.
But the specificity of cybercrime – fraudsters make up a significant part of the volume of crimes – is that an attacker cannot achieve anything by brute force. The vulnerability of a cybercrime victim, unlike an “old-fashioned” street robbery situation, can almost always be eliminated with fairly simple precautions. It is to them that the Muscovite Information Security Memo is dedicated, which is distributed both in electronic form – on the mos.ru city portal, on the websites of district administrations, etc., and “in paper” – at strong points of order protection (OBOP).
The number of people who are not yet aware of cybercrime as a threat, according to polls by sociologists, has significantly decreased in recent years: if in 2019 there were 23% of those surveyed, now this figure is 12%. In any case, reasonable citizens – those who understand that personal data on the Web must be protected – are the absolute majority.
My passport is my fortress
“Remote”, network crimes require a special approach to disclosure, since criminal technologies are developing very quickly, with the speed of technological growth, and the law enforcement system, which operates strictly within the framework of the law, is bound by legal rules. That is why prevention is of particular importance here: it is much easier not to become a victim of fraudsters than to win back and return the stolen goods later. But not only money can be “hijacked”, but also, for example, a scan (photo) of a passport, which threatens even more troubles. For example, the provided passport data can be used for a loan, which the victim of fraud will have to pay for. Another option is the registration of a mobile phone used for illegal transactions based on stolen passport data.
“The safety rules for passport scans are simple,” said the Moscow MIA General Administration. – A copy of a passport is a very important document, so it, like passport data, should be provided only to verified people and companies, and only in those cases when a passport is really needed. Further, provide copies of only those pages of the passport that are necessary in this case. Do not let anyone else make copies of all pages of your passport. Finally, if we are talking about a paper copy, it is useful to write on it for which organization it was provided.
Password is a big secret
The lion’s share of crimes committed online is fraud: attackers gain confidence in citizens, posing as employees of banks and other organizations, and deceive passwords from them to access the Internet bank (after which they withdraw money from the account, and sometimes even take loans “for the victim’s account “). In this regard, the Main Directorate of the Ministry of Internal Affairs of Moscow reminds of several simple rules regarding communication with employees of call centers:
– Check the number from which you are called. It shouldn’t be hidden anyway.
– Ask a simple question to the interlocutor regarding your bank account (for example, the balance on it, but not your full name and not other “permanent” information that may be known to fraudsters from stolen databases). An employee of a real bank call center will be able to provide up-to-date information, the scammers do not know it.
– Do not give the call center employees any passwords, pin codes and similar “key” data. Any request of this kind from a caller is a sure sign of fraud.
– If you buy something on an ad or in a small online store, do not agree to pay in exotic ways, for example, through connecting to someone else’s mobile banking or agreeing to give your password to the “buyer”. Such offers are made only by scammers. Make transfers from card to card only after the transaction.
Finally, the Moscow police noted, passwords themselves need to be protected separately. Carefully protect the memo with passwords from prying eyes, or better write them down in encrypted form. If possible, use two-factor authentication – with confirmation via SMS to your phone. It is also useful to have two communication devices: a “dialer” with the main mobile number, used for communication and authentication, and a separate smartphone, on which digital services and other applications are installed. To do this, it is not necessary to use an additional SIM card – you can use a smartphone in Wi-Fi mode from home or distribute mobile Internet from the main “dialer” phone (a number of push-button devices allow this).
Rumors – home!
In the Information Security Memo for Muscovites, a special section is devoted to hygiene in relation to fake news (fake news). They have also become the scourge of our time: rumors, gossip, conspiracy theories spread through social networks, up to direct slander and incitement to hatred. Many types of such information manipulation are criminally punishable – in particular, libel (dissemination of knowingly false and discrediting information to other persons), incitement of interethnic (interreligious, etc.) hatred, dissemination of false information about epidemics and the fight against them.
Modern technologies – for example, parental control in the operating systems of computers and smartphones – can protect children from information that is dangerous for their development. But the protection of adults, that is, you and me, is our, and only ours, business. In a new era, when any information is available “at your fingertips”, and almost all everyday purchases and operations can be done remotely, it is imperative to be aware of the possible risks and be able to avoid them. This means that we will definitely learn to separate good from evil in virtual reality. This is what the memo compiled for Muscovites helps.
.