Ministry announces a fresh process for password reset on "Gosulyuzh" platform
Hacking Alert: Russia Tightens Security on Unified State Services Portal
Starting June 1st, a new measure is in place in Russia that prevents the sending of confirmation codes for operations on the unified state services portal during an ongoing phone call, according to the Ministry of Internal Affairs' department for combating the misuse of information and communication technologies.
This move aims to put an end to unauthorized access to accounts using screen-sharing schemes, the cyber police explained.
Recently, fraudsters have been altering their methods for accessing "Gosuslugi", a popular Russian service platform. The law enacting these changes was passed in April 2025, with the primary goal of shielding Russians from cyber fraud. Now, any SMS message sent during a call will only be delivered after the call concludes.
Maksut Shadaev, head of the Ministry of Digital Development, previously pointed out that any access code received via SMS is hazardous. "It's the main factor that lets fraudsters sneak in," he warned.
With this in mind, the Ministry of Digital Development is planning to bolster the rules for password recovery on "Gosuslugi". The ministry is deliberating over the use of biometrics, identification at MFCs, or checks through a banking app for this purpose.
At the end of May, the Ministry of Internal Affairs reported that fraudsters had shifted their scheme for accessing "Gosuslugi". Now, they are tricking people into contacting "technical support" on a fake number. Scammers are sending emails disguised as automated tech support messages, claiming that someone has illegally accessed a user's account and urging them to call the specified number.
As banks in Russia fortify control over money transfers and cash withdrawals, it seems that a broader focus is being placed on beefing up security measures across digital platforms. This development could potentially impact the security and accessibility of services like Gosuslugi. For specific information on Gosuslugi and password recovery methods, it's advisable to consult official announcements from the Ministry of Digital Development or related government sources.
Russia continues to actively address cyber-related issues, including heightened legal measures and prosecution of cybercrimes. These efforts signify a broader strategy to improve cybersecurity and protect against fraud and cyber-enabled crimes.
The new measure in Russia, effective June 1st, targets cybersecurity by preventing the sending of confirmation codes during phone calls on the unified state services portal, aiming to combat unauthorized access via screen-sharing schemes. In light of these changes, the Ministry of Digital Development is considering bolstering password recovery methods on Gosuslugi, potentially implementing biometrics, identification at MFCs, or checks through a banking app.
