Artificial Intelligence Has Helped Reduce Cyber Incident Analysis Time in Russia by One Quarter

AI Cuts Cyber-Incident Analysis Time

RT-Information Security, a subsidiary of the state corporation Rostec, prevented more than 49,000 cyber incidents in the first nine months of 2025, according to the company. The most dangerous attempts involved vulnerability exploitation, phishing campaigns, the use of illegal software, and unauthorized access to corporate infrastructure.

Attackers also attempted social‑engineering tactics, uploaded vulnerable certificate templates, and launched network scanning tools — reflecting a growing sophistication of threat actors.

Automation as a Strategic Asset

Rostec highlights that artificial intelligence and automation tools now play a central role in incident response. This year, RT Protect solutions were upgraded with an integrated suite of AI technologies.

As a result, two critical performance indicators improved by 25 percent: incident‑analysis time and the rate of false positives.

Engineers and analysts now rely on AI models to generate reports, detect anomalies, and process threat‑intelligence data — accelerating workflows and reducing the burden on human specialists.

Toward a More Resilient Cyberdefense Ecosystem

The deployment marks a broader shift in Russia toward high‑speed, high‑accuracy cyberdefense frameworks powered by AI. Automated analytics enable earlier detection of malicious activity, more reliable triage, and faster containment.

By integrating AI into national cybersecurity infrastructure, state institutions aim to keep pace with increasingly complex threat landscapes and strengthen the digital resilience of critical industries.