At face value
After Nabiullina headed the Central Bank in mid-2013, a large-scale clearing of the banking sector from unscrupulous players began. In five years, the Central Bank revoked licenses from hundreds of banks. Against the background of mass revocation of licenses, banks often began to face information attacks and unfair competition.
One of the first to deal with this was Bank Vozrozhdenie, which was actively working in the Moscow Region, immediately after revoking the license from Pushkino Bank located in Moscow, in September 2013 — this started the sweep of the banking sector. Investors of the "Renaissance" panicked after sms-mailings and calling the residents of a number of suburban areas. In December 2013, the then Deputy Chairman of the Central Bank, Alexey Simanovsky, who was in charge of the oversight bloc at the time, proposed introducing criminal penalties for spreading false information about the state of banks. He called sms and rumors on the Internet "information warfare, which at the regional level is similar to well-organized guerrilla attacks".
In September 2014, an information attack began on the Ural banks - it cost the Central Bank to withdraw the license from Bank 24.ru, operating in Yekaterinburg.
The object of the attack was even Sberbank. In December 2014, at the height of the crisis, his clients began to receive reports that because of the threat of sanctions, their money would be blocked. On December 16, when the ruble collapsed, customers took 300 billion rubles out of the state bank, and in a week - 1.3 trillion rubles.
Information attacks are a frequent phenomenon in recent years, although it has now become much calmer: everyone is used to both license reviews and reorganizations, one financier says. And they usually do the same thing: they fear that a bank does not make payments, that the bank has problems, there is no money - they spread rumors among customers. There are sms-mailing, he adds.
Two attack patterns
All informational attacks can be divided into two parts, Artem Sychev, deputy head of the Central Directorate of Security and Information Security of the Central Bank, said in September 2017. The first is aimed at disrupting the performance of a normal object. The second is when an object, realizing that it has problems, creates a certain information field around itself, that it is “so white and fluffy, and people are starting to run into it from all sides,” Sychev said. Then he announced that in order to combat information attacks on banks, the Central Bank began to monitor telegram channels.
Media monitoring, blogs, social networks are monitored by the Bank of Russia FinCert center for monitoring and responding to computer attacks, this is done during the working day at intervals of about two hours, one of the FinCert reports said. The center monitors negative information not only about banks, but also about the leadership of the Bank of Russia, it was also said there.