Monthly selection of cyber news

Kazakhstan News

September 01

Kazakhstanis will not need employment record book from 2021

Vice Minister of Labor and Social Protection of the Population Yerbol Ospanov told what an electronic labor contract was and why its introduction was inecessary. According to him, the new format will help facilitate many labor relations processes.

Personal data leakage detected at Damumed

Kazakhstanis complain about the leakage of personal data from the Damumed system - it turned out that third parties can not only obtain the users’ health information, but also their contact details, TIN, employment details, as well as the amount of taxes paid.

September 02

Kazakhstan will launch its own platform for online petitions

President of Kazakhstan Kassym-Jomart Tokayev instructed to strengthen the role of maslikhats and local self-government, as well as create a platform where Kazakhstanis can create petitions and appeals with their vision of solving problems in the regions

The President intends to attract 500 billion tenge to the IT sector I

The President of the Republic of Kazakhstan Kassym-Zhomart Tokayev said in his national address that within five years it is necessary to bring the volume of investments in the IT sphere to 500 billion tenge.

Pensions and benefits will be paid through the digital "social wallet"

Minister of Labor and Social Protection of Population Birzhan Nurymbetov at a meeting of the government of the Republic of Kazakhstan chaired by Prime Minister Askar Mamin reported on the implementation of the President's instructions in the social and labor sphere.

September 03

Passports and diplomas of Kazakhstanis will be digitalized by the end of the year

A number of documents will be digitized by the end of the year in Kazakhstan, the Minister of Digital Development, Innovation and Aerospace Industry Bagdat Musin said during a government meeting. According to him, measures have now been developed that simplify the use of biometrics to receive public services.

An electronic register of construction licensees to appear in Kazakhstan

As part of the instructions of the Prime Minister of the Republic of Kazakhstan, the Ministry of Industry and Infrastructure Development, together with the National Chamber of Entrepreneurs "Atameken" and central government bodies, is working to create a Unified Register of Licensees in the Construction Industry

September 04

 An electronic map of lands is being created in Nur-Sultan

An electronic map of lands is created in Nur-Sultan. In real time, it will be possible to find out everything about the land plot: from its cadastral number to commercial property. Deputy akim of the capital Malika Bekturova told about this in her speech

 MES RK will develop uniform requirements for online education platforms

Minister of Education and Science of the Republic of Kazakhstan Askhat Aimagambetov, during a briefing at the government's press center, spoke about the measures taken in the educational sphere as part of the implementation of the President's Address "Kazakhstan in a new reality: time for action"

Interruptions on the UAPF website: Kazakhstanis massively check pension savings

Kazakhstanis en masse applied for information on the state of pension savings in the Unified Pension Savings Fund (UAPF). The number of requests on the eGov website has grown fivefold, and the pension fund portal itself is overloaded

September 07

Kazakhstan will investigate the facts of disclosure of personal data

Kazakhstan’s Ministry of Digital Development, Innovation and Aerospace Industry will conduct checks of personal data violations. If illegal collection or leakage of personal data are suspected, citizens can contact the ministry and request an investigation.

Smart roads to appear in Pavlodar

10 new "smart" mobile complexes of automatic speed fixation "Oracle" will register violations on the roads of Pavlodar. The speed of cars passing through the monitored lane of the carriageway will be determined using sensors mounted in the asphalt

September 08

Competition for startups and technology entrepreneurs will be held in Kazakhstan

Startup Go is not just a competition for startups and technology entrepreneurs, which will be held as part of the GoViral international festival, but an excellent opportunity for local teams to create a global company, scale it to the whole world, and, as a result, affect millions of lives.

September 09

Chaos and anarchy. The activist spoke about the "leaking" of student data in Telegram

Kazakhstani activist Pavel Alexandrov spoke about the “leaky” platform used for distance learning

Another online lesson of Kazakh schoolchildren was disrupted by unknown persons in ZOOM

Aktobe bully disrupted an online lesson for schoolchildren. An unknown person entered the general class chat and began writing obscene messages. Parents complained about this fact on social networks, fearing for the psyche of their children

Kaspi made the Kaspi Kartomat patent open for use

Kaspi.kz has made open the license for Kaspi Kartomat in Kazakhstan. Information about this is published on the website of the National Institute of Intellectual Property. Previously, Kaspi.kz received a patent that secures the company's ownership not only for technology, but also for the algorithm for issuing payment cards using a mobile application and a card machine

September 10

Hackers target Kazakh distance learning platform

For several days in a row, Kazakhstan’s distance learning platform OnlineMektep.org was subjected to a massive cyber attack from outside the country, according to the platform’s developers. The attack was well-coordianted and aimed at undermining user confidence, they said.

E-learning system turned out to be ineffective – MPs

Majilis deputy Jamilya Nurmanbetova demands to consider the issue of responsibility of officials for poor-quality preparation of the education system by the beginning of the 2020-2021 academic year in the format of distance learning

More than 100 thousand violations identified in the provision of public services online

The Agency of the Republic of Kazakhstan for Civil Service Affairs revealed about 100 thousand violations in the field of providing public services in electronic form

September 11

Difficulties in obtaining an EDS in Kazakhstan

According to the press service of National Information Technologies JSC, technical problems occur on the side of the BTS Digital contractor.

September 15

Kundelik and Bilimland hit by DDoS attacks

The KZ-CERT Computer Incident Response Service of the RSE "GTS", while monitoring the Internet resources of the state bodies of the Republic of Kazakhstan, recorded targeted DDoS attacks aimed at the educational platforms Kundelik.kz and Bilimland.kz.

September 16

Invalid data in the tax database can be corrected

 The State Revenue Committee of the Ministry of Finance of the Republic of Kazakhstan announced a new functionality of the Tax Wallet service. Kazakhstanis will be able to correct their data on taxation objects.

September 17

The protection of domestic educational platforms is enhanced

 Executive Director of Bilimmedia group, Onlinemektep project manager Sanzhar Kenzhekhanuly told how Kazakhstan is working to strengthen the protection of educational platforms after hacker attacks

Kundelik can handle up to 2.5 million visitors

 General Director of Kundelik LLP Mukhtar Ilyasov spoke about the possibilities of the Kundelik educational platform. Now the system has about 5.5 million registered users. Until the fourth quarter of the last academic year, it withstood the load of up to 2 million people a day.

September 18

Cryptocurrency exchange to open in Kazakhstan

 A cryptocurrency exchange based on Japanese technologies is to be launched in Kazakhstan. This became known during the meeting, which took place online at the Embassy of Kazakhstan in Japan. The exchange will operate on the platform of the Astana International Financial Center. The Ambassador of Kazakhstan in Japan Yerlan Baudarbek-Kozhatayev noted that despite the economic turbulence caused by the spread of the coronavirus, Japanese investors are expressing interest in the favorable investment conditions created in the country.

September 21

Biometrics will be used to provide public services

 Bagdat Musin, Minister of Digital Development, Innovation and Aerospace Industry of the Republic of Kazakhstan, spoke about the innovations in the provision of public services in electronic format. According to him, eGov will not be a one-stop shop for the provision of public services, they can be provided by third-party services.

September 24

A technology for automated recognition of Kazakh speech developed

The project on automated recognition of Kazakh speech is being launched by the Institute of Smart Systems and Artificial Intelligence at Nazarbayev University (ISSAI). It is meant to help introduce the Kazakh language to the global digital space.

September 25

Bagdat Musin named digital indicators of Kazakhstan  

The Ministry of Digital Development, Innovation and Aerospace Industry of the Republic of Kazakhstan together with Zerde Holding JSC organized an online session on the topic "Towards sustainable development: making the world digital by default"

Internet fraud is gaining momentum in Kazakhstan

The KZ-CERT Computer Incident Response Service of the RSE "GTS" increasingly receives requests from users who have become victims of fraudulent schemes on various Internet platforms.

Caspian news

September 1

 The EAEU will create a unified job search system

At the meeting of the board of the Eurasian Economic Commission, the Minister for Internal Markets, Informatization, Information and Communication Technologies of the EEC Gegham Vardanyan presented a report on the status of the implementation of the project “Unified search system“ Work without Borders ”", which is being implemented within the digital agenda of the Eurasian Economic Union.

September 2

 "SMART Salym" - how the authorities of the Kyrgyz Republic want to make taxation transparent

The implementation of fiscalization projects for tax procedures in Kyrgyzstan will continue under the SMART Salym brand, the State Tax Service reported. The presentation of the unified concept of SMART Salym took place at the meeting of the Coordination Council on digitalization of tax and customs administration, which was chaired by Prime Minister Kubatbek Boronov.

September 3

Competition for the best startup announced in Kyrgyzstan

 A republican competition "Startup Kyrgyzstan 2020-2021" has been announced in Kyrgyzstan, which is designed to support novice entrepreneurs. Up to 500,000 soms will be allocated for the implementation of one startup

September 10

Mongolian government to support startups

On September 7, the Standing Committee on Innovation and Online Policy of Mongolia organized a discussion on the topic "Topical Issues for Startup Enterprises and Government Support"

 E-Commerce Park to be created in Kyrgyzstan

The global digital economy highlights such an important strategic direction as e-commerce, which requires technological, legislative and infrastructural preparation. Minister of Economy Sanzhar Mukanbetov said this during a meeting with President of the Association of Electronic Commerce in Kyrgyzstan Ayganysh Saparalieva. During the meeting, issues of ensuring the legal framework for the expansion of electronic commerce in the Kyrgyz Republic were discussed, including issues of taxation of participants in the e-commerce market, to create the most favorable conditions for entrepreneurs and investors

September 17

 The EAEU creates an institute of cross-border e-commerce operators

The second meeting of the High-Level Working Group on Cross-Border Electronic Commerce took place. Representatives of the Eurasian Economic Commission (EEC) and the member states of the Eurasian Economic Union (EAEU) discussed the creation and development of the institution of “e-commerce operators”, the problems of bonded warehouses, as well as the application of technical regulation measures within the framework of cross-border e-commerce.

September 21

 Kazakhstan to share digitalization experience with Kyrgyzstan

Zerde Holding JSC and the State Committee for Information Technologies and Communications of the Kyrgyz Republic held a meeting on bilateral cooperation in the field of electronic government and electronic services. Arman Abdrasilov, Chairman of the Board of JSC “Holding“ Zerde ”, held negotiations with the Chairman of the State Committee for Information Technologies and Communications of the Kyrgyz Republic Altynbek Ismailov.

September 23

Pandemic gives Mongolian government an edge in digital governance

Mongolia's e-government is a topic that is often overshadowed by the cyber activity of the country's large neighbors - Russia and China. However, the coronavirus pandemic has given the Mongolian government an edge in implementing long-overdue digital governance practices. Implementing e-government services in Mongolia, known as E-Mongolia, will improve public services, maximize efficiency and, most importantly, reduce the deep-rooted bureaucracy and nepotism that have hampered public services for some time.

September 24

ID cards to replace passports in Uzbekistan

The President of Uzbekistan signed a decree on the introduction of a unified personal identification system in the country, which provides for the replacement of domestic biometric passports with ID cards with an electronic chip from January 1, 2021.

September 27

Azerbaijani hackers attack about 90 Armenian websites

A number of Armenian websites have been broken down by Azerbaijani hackers and “Karabakh is Azerbaijan and an exclamation mark” voiced by President Ilham Aliyev in the international tribune, as well as “If an Armenian soldier does not want to die, let him leave the land of Azerbaijan” quote added. Photos of Azerbaijan’s national hero Mubariz Ibrahimov have been posted on Armenian websites.

September 30

The main targets of the cyber attacks by Armenians against Azerbaijan identified

The Center for Combating Computer Incidents monitors and carefully analyzes cyber attacks against Azerbaijan on a 24/7 basis. According to the center, Armenian hackers carry out cyber attacks against four main targets: the Internet information resources of government agencies, the banking sector, media sites and individual users (e-mail addresses, calls, etc.).

DDoS attacks on Azerbaijan's state information resources are prevented

In order to prevent DDoS (Distributed Denial of service) attacks on Azerbaijan's state information resources, including cyber-attack attempts, IP segments belonging to “zombie” computers that are members of the botnet, anonymous "proxy" and VPN access to state information systems are regularly blocked by the Center for Combating Computer Incidents.

Russian news

September 1

Data centers to report to Roskomnadzor

Operators of Russian data centers may be forced to provide information on tariffs, capacity and load to the Roskomnadzor Monitoring Center, which is to be created as a part of the "sovereign Internet" law, Kommersant reports.

The government asked to protect the data of buyers at international online stores

The Russian business union "Delovaya Rossiya" sent a letter to the government with a proposal to amend legislation to better protect the data of Russian online buyers from the risks of information leaks.

Russian Embassy in Austria’s email account hacked

According to Russian diplomats in Austria, there is reason to believe that unknown attackers hacked into their account, so users are asked not to open links and attachments sent from info.austria@mid.ru, the embassy's official email address.

Payment data of Russians may be equated with personal data

Delovaya Rossiya business union proposed to equate the Russians’ payment data with their personal data. In their opinion, this may guarantee better protection of citizens' accounts from various fraudsters.

September 2

Czech Republic suspects Russia of involvement in a cyber attack on a government body in 2019

Last year, one of the strategic state structures of the Czech Republic was subjected to hacker attacks for the purpose of cyber espionage, which were allegedly carried out from Russia. This was reported by the Czech telegraph agency ČTK with reference to the report of the National Directorate for Cyber ​​and Information Security of the Czech Republic. According to the report, the attacks were carried out using targeted phishing emails, which, when opened, downloaded malware onto the victim's device. According to the report, the organizer of the attacks may be Sofacy hacker group (also known as Fancy Bear, APT28, Pawn storm, Sednit and Strontium), suspected of having links with the Russian Federation. The department did not indicate in the report which state structure was the target of the campaign.

September 3

A face-scan biometric payment system to be introduced in the Moscow metro

On September 1, a video surveillance system was launched at all metro stations in Moscow. According to Moscow’s Department of Transport statement posted on Telegram, metro passengers will be able to pay for travel via a face scan in the near future.

Criminals attack 300,000 WordPress sites using a critical vulnerability

Cybercriminals are exploiting a critical vulnerability in a file manager plugin for WordPress sites, which allows them to load scripts and remotely execute code on web resources.

A group that stole money from bank cards arrested in St. Petersburg  

The Main Directorate of Russian Ministry of Internal Affairs for the city of St. Petersburg and the Leningrad Region stopped the activities of fraudsters who specialized in stealing money from bank cards by impersonating bank security officers.

   September 4

Russian state-owned companies to be classified as elements of critical information infrastructure to move to domestic software

The Federation Council plans to toughen software requirements for state-owned companies. This is due to the fact that they is a proposal to classify them as elements of critical information infrastructure (CII), like banks and government agencies.

September 7

Only 13% of cybersecurity reports cover threats to citizens

Researchers believe that the vast majority of cybersecurity reports focus on government hackers, industrial espionage, and targeted attacks. Only a small share covers cyber threats to ordinary citizens.

September 8

Winnti targets Russian software developers for financial institutions

Cybercriminal group Winnti used new tools and infrastructure for the attacks, concentrating on software developers for financial organizations from Russia and Germany.

September 11

USA imposes sanctions against three Russians for cyberattacks

The update of the "black list" to which several Russians have been added is intended to protect the upcoming US presidential elections from foreign interference and "send a signal to Moscow" that such attempts will be prosecuted, the US Treasury said in a statement.

Microsoft to end support for Windows 10 1903 on Dec. 8, 2020

Microsoft has warned users that it will end support for Windows 10 version 1903 (Windows 10 May 2019 Update) on December 8, 2020.

Microsoft accuses Russian hackers of attacks on 200 US organizations

Microsoft has detected attempts to interfere in the US elections from Russia, China and Iran. This was reported on September 10 in the company's blog.

The number of DDoS attacks on Russia’s educational sector increases by 350%

The first half of 2020 was marked by an increase in the number of DDoS attacks on Russian educational resources. This sharp jump was recorded by Kaspersky Lab specialists.

September 12

Russian central bank warns of scheme to obtain information about the balance on people's bank cards

The Central Bank warned banks about a scheme that allowed cybercriminals to obtain additional information about clients of one of the credit institutions and subsequently use it for fraud purposes using social engineering techniques

September 14

Russian Central Election Commission complains about massive hacker attacks on election day

The deputy head of the Central Election Commission Nikolai Bulaev said that during the recent elections, round-the-clock hacker attacks were being carried out on the organization's website.

Pentagon concerned by the possibility of Russia and China using artificial intelligence

The Pentagon is concerned by the possibility of Russia and China using artificial intelligence (AI) to control autonomous attack systems, according to National Interest magazine.

Scammers send fake letters with bank logos to Russians

Fraudsters continue to improve their methods with new social engineering tools designed to further mislead gullible clients of Russian banks. Now social engineering aimed at extracting money from clients has been supplemented with a new element designed to further mislead victims.

September 15

Cybercriminal who stole 10.8 million rubles from Kovrov companies arrested

The Kovrov city court considered a 28-volume criminal case opened against a local resident accused of cybercrimes. According to investigators, the accused and his accomplices stole 10.8 million rubles from businessmen.

September 16

Russian hacker to show instructions for hacking online stores for $5,000

Recently, thousands of online stores using the Magento platform fell victim to a cyberattack - cybercriminals injected malicious code that steals customer bank card details. The cybercriminals' operation became successful due to a 0-day exploit, which is being sold by a Russian-speaking hacker under the pseudonym “z3r0day”. For just $ 5,000, z3r0day will shows how to exploit a vulnerability in web software and inject a skimming code into the files of an online store, while authentication can be bypassed.

September 18

Hackers to help create the Russia’s digital code

Presidential Human Rights Council will involve domestic hackers to create a report to Russian President Vladimir Putin on the problems associated with computer technology, from harassing users on social networks to cyber espionage using CCTV cameras and bank data leaks. After the report, Concil intends to start creating a "digital code" and initiate a bill designed to protect Russian users from harassment in social networks and surveillance.

September 23

Russian hackers may be behind a fatal cyber attack

Law enforcement officials investigating a cyberattack on a German hospital that killed a patient believe that hackers from Russia may be behind the incident.

Previous issues | August 2020, issue 5

Monthly selection of cyber news

Previous issues | July 2020, issue 4

Monthly selection of cyber news

Previous issues | June 2020, issue 3

Monthly selection of cyber news

Previous issues | May 2020, issue 2

Monthly selection of cyber news

Sources

We used the following information sources to prepare this material:

https://profit.kz/

https://www.anti-malware.ru/

https://www.securitylab.ru/