The largest Russian banks released mixed results regarding customer fraud in 2023, according to RBC coverage. The data show that some lenders saw fewer cyberattacks, while others faced different fraud dynamics that affected overall security landscapes across the sector.
Among the leaders, VTB and Gazprombank reported a decline in the number of attacks. Gazprombank’s senior vice president, Nikita Chugunov, noted that VTB’s figures dropped for the first time in four years, down 16 percent to 6.5 million recorded attempts. While the frequency of attacks fell, the share that succeeded grew, and the average amount stolen per incident rose. A Gazprombank representative, Alexey Pleshkov, described the trend as multi-layered and indicative of attackers refining their methods even as defenses improved in some areas.
In contrast, Tinkoff Bank saw a 17 percent rise in fraudulent activity measured by the number of affected customers. Oleg Zamiralov, who leads the bank’s security ecosystem center, attributed the increase to several factors, including a low baseline from 2022, ongoing social engineering schemes, and the arrival of new fraud schemes. The bank emphasized that attackers continue to adapt to security controls, posing persistent challenges for customer protection.
Post Bank reported more customers reporting unsuccessful or attempted fraud, a sign that awareness and vigilance are rising. A bank representative connected the uptick to cybersecurity education efforts that empower customers to recognize and report suspicious activity, creating a feedback loop that helps banks respond more quickly to evolving threats.
On the regulatory and public-awareness front, the Ministry of Digital Development observed a broad decrease in information about fake calls, with March being an exception. The Central Bank confirmed that in the third quarter of 2023, the number of counterfeit phone calls blocked through regulator-led initiatives declined by roughly half, about 49.6 percent, suggesting improvements in call-screening and enforcement measures.
Security researchers at Kaspersky Lab did not register a downturn in attacker activity. Sergei Golovanov, a Kaspersky expert, pointed out that phishing links surged by more than five times, while the incidence of phone-based fraud remained notably high. This paints a picture of coordinated and diversified fraud campaigns that continue to exploit both digital and voice channels.
Industry analysts, including FACCT expert Dmitry Dudkov, describe fraud as a wave-like phenomenon, with oscillations between rising and waning activity. Golovanov adds that many attacker plans have grown more targeted and multi-stage, integrating data gathering, social engineering, and staged contact to maximize success. Despite these shifts, the underlying interest in attacking bank customers remains strong, underscoring the need for persistent defense and user education.
Earlier discussions around consumer safety resurfaced in public discourse, with reminders about safe shopping practices during Cyber Monday. Authorities and financial institutions used these moments to reinforce guidelines on recognizing scams, verifying payment requests, and safeguarding personal information during high-traffic shopping events.
Additionally, officials from the Federal Tax Office highlighted the emergence of new fraud schemes that leverage tax-related narratives to lure victims, underscoring the ongoing risk landscape and the importance of staying informed about evolving tactics across sectors. As banks and regulators adapt, customers are urged to maintain cautious online habits, enable multi-factor authentication where possible, and report suspicious activity promptly to protect themselves and the financial system.