Russia Approves National Plan for Fighting Cybercrime with Multi-Level Defense
The Russian government has adopted a comprehensive plan to implement its state system for combating cybercrime. The initiative combines legislative changes, interagency coordination, education, and technical controls to strengthen digital security across the country.
Legislative and Educational Measures
Under the plan, telecom operators, internet providers, and online platforms will be required to notify law enforcement about signs of cybercrime. Legislative proposals to increase liability for violations of personal data rules—including extending the statute of limitations for administrative offenses—are expected by Q3 2027.
Educational campaigns will also become permanent, coordinated by the Ministry of Digital Development, Ministry of Culture, Ministry of Finance, Ministry of Education, Ministry of Science and Higher Education, the Central Bank, and the Ministry of Internal Affairs. A new 'digital literacy depository' of training materials will be created. By Q1 2027, mobile and social apps will integrate awareness modules, while technical measures will tighten oversight of cryptocurrency transactions, launch a single registry of official e-commerce sites to counter phishing clones, and strengthen domain registration procedures.
Protecting Personal Data
This initiative is a key element of Russia’s national goal for 'Digital Transformation of Government, Economy, and Society.' By combining legal, educational, and technical measures, the plan aims to lower cyber risks, strengthen state defense mechanisms, and improve overall digital security.
Implementation is expected to increase citizens’ awareness of online fraud schemes and enhance personal data protection. Officials note that the framework could also serve as a reference model for other countries seeking systematic approaches to cybercrime prevention.
The inclusion of AI algorithms and registries highlights Russia’s ambition to create homegrown cybersecurity solutions, including export-ready monitoring and protection technologies. Domestically, embedding awareness campaigns into apps could prove especially valuable in remote regions, where cyberfraud risk is higher and traditional outreach limited.
Biometric Database of Fraudsters
The plan builds on a broader 2024 national concept for combating ICT-enabled crime. In June 2025, Russia announced plans to create a biometric database of fraudsters. The Ministry of Digital Development, Ministry of Internal Affairs, Roskomnadzor, and the Central Bank were instructed by Prime Minister Mikhail Mishustin to deliver the system by April 2026.
Authorities are also exploring AI-driven blocking of suspicious phone calls, provided users opt in.
In July 2025, the Ministry of Internal Affairs issued warnings about phishing websites imitating Moscow’s toll payment portals. Victims entering card data had their money stolen while road fees remained unpaid. Officials urged citizens to rely only on official apps such as 'Russia Parking,' Gosuslugi, or licensed banking apps.
These incidents highlight the urgency of multi-layered defenses against fraud.
Systematic Approach
The government plan represents a large-scale, structured effort to reinforce national cybersecurity. The mix of legislative, educational, and technical actions creates a multi-tier defense system against digital threats.
By Q3 2027, lawmakers expect draft legislation to be ready, while AI integration and expanded infrastructure oversight should be in place by 2028. If successfully implemented, these projects could form the basis for export-oriented cybersecurity frameworks.
