Authorised frauds (AFs): in general*
| Number of AFs | Amount of AFs, ₽ ths | % of reimbursed funds (of the total amount) | Number of prevented AFs | Amount of prevented AFs, ₽ ths | |
|---|---|---|---|---|---|
| Average over the previous four quarters (from 2024 Q1 through 2024 Q4) | 299,361 | 6,883,576.60 | 9.9 | 18,041,512 | 3,377,009,953.07 |
| 2025 Q1 | 296,591 | 6,856,684.43 | 7.6 | 43,831,404 | 4,607,333,021.16 |
Individuals*
| Bank cards | Accounts (remote banking, money transfers) | FPS | E-wallets | Without opening accounts | |
|---|---|---|---|---|---|
| Number of AFs | 212,459 | 38,272 | 43,349 | 1,960 | 64 |
| Amount of AFs, ₽ ths | 1,736,075.33 | 2,903,273.23 | 2,008,534.55 | 31,154.95 | 11,818.57 |
| % of reimbursed funds | 8.8 | 8.7 | 5.3 | 0.6 | 0.0 |
Legal entities*
| Accounts | FPS | |
|---|---|---|
| Number of AFs | 456 | 31 |
| Amount of AFs, ₽ ths | 161,003.66 | 4,824.14 |
| % of reimbursed funds | 6.6 | 1.8 |
Main types of cyber attacks: number of detected attacks, % change
| Attack type | Average over the previous four quarters | 2025 Q1 |
|---|---|---|
| Social engineering attacks | 20,340 | 17,278-15.05% |
| Phishing attacks | 1,119 | 714-36.19% |
| Attacks using malware | 29 | 9-68.97% |
| DDoS attacks | 95 | 70-26.32% |
| Other attacks | 58 | 105+81.03% |
Fraudulent phone numbers: detected numbers, % change
| Average over the previous four quarters | 2025 Q1 | |
|---|---|---|
| Using phone numbers 8 800 | 478 | 283-40.79% |
| Landline phone numbers | 2,196 | 905-58.79% |
| Mobile phone numbers | 40,323 | 18,570-53.95% |
Over the reporting period, the Bank of Russia initiated 19,758 requests to communication operators to implement response measures in relation to the phone numbers used for illicit purposes.
Fraudulent online resources: domain names sent for blocking to the Prosecutor General’s Office of the Russian Federation and domain name registrars, number and % change
| Average over the previous four quarters | 2025 Q1 | |
|---|---|---|
| Unlicensed operations | 1,880 | 2,749 +45.90% |
| Phishing | 6,979 | 1,781 −74.48% |
| Financial pyramids | 2,654 | 2,620 −1.28% |
The Bank of Russia sent requests for inspections and de-delegation of 306 internet domain names used for illicit operations to domain name registrars.
Besides, the Bank of Russia provided data on 6,838 internet domains to the Prosecutor General’s Office of the Russian Federation for carrying out inspections and further blocking them according to Article 15.3 of Federal Law No.
* Starting from 25.07.2024, banks shall submit authorised frauds according to the updated reporting form 0403203; the data may be adjusted in the future to take into account the updated information based on the results of interaction with credit organizations.