According to the United Nations, the number of cyberattacks worldwide is growing by an average of 80 per cent each year. Every day, government bodies, industrial facilities, the energy sector, housing and utilities, transport systems, universities, banks, and shops are under threat – virtually any company or organisation may be at risk.

Analysts are observing a worrying trend: modern cybercriminals generally recognise no borders – those who plan and carry out attacks online employ advanced technologies, cause more damage than before, and remain undetected for longer.

Regionally, according to open-source information, the most frequently targeted areas by cyberattacks in the first quarter of 2025 were countries in Latin America and the African continent.

The global problem of digital security requires collective solutions and consolidated efforts to prevent cyber threats. According to experts, BRICS cooperation in this field is becoming a model for the entire world. They highlight the grouping’s key role in shaping an intergovernmental internet space based on the principles of virtual sovereignty.

Multifaceted cybercrime

The National Committee for BRICS Research provides the following data:

• In Brazil, cybercriminals often counterfeit e-commerce platforms and telecom operators to steal login credentials;

• In Russia, a common tactic is for attackers to pose as employees of public service organisations;

• In South Africa, internet fraudsters frequently target individuals looking to profit from investments;

• India is among the top 10 countries globally in terms of spam distribution;

• The United Arab Emirates ranks among the top three countries worldwide for the cost of data breaches. Damage to the Gulf monarchies amounts to billions of dollars, with such cybercrimes largely targeting access to commercial, technological, and state secrets.

However, it is inaccurate to claim that any single type of cyber threat is unique to a particular country. That is why, regardless of geography, territorial size, economic development, or population, countries are equally interested in developing joint approaches and applying them in practice.

In September 2024, during Russia’s BRICS Chairmanship, at a meeting with BRICS representatives responsible for security matters, Russian President Vladimir Putin announced the creation of a special electronic register for data sharing on cyberattacks and incidents and highlighted that the decision to establish a BRICS+10 council to combat terrorism financing and money laundering was nearing final approval.

Russia: making crime-proof systems

Delivering a report in 2024 at a BRICS meeting on combating digital crime, Prosecutor General of the Russian Federation Igor Krasnov spoke about the development of Russian software that helps prevent the criminal circulation of cryptocurrency. This software is used in criminal investigations and financial monitoring. In addition, law enforcement officers have access to a wide range of domestic information and analytical resources, which allows for the rapid collection, analysis, and response to data – for example, blocking the transfer of assets abroad or preventing hostile takeovers of enterprises.

In an exclusive comment to TV BRICS, Candidate of Economic Sciences Lilia Aleeva noted that Russia is now actively building working contacts with other BRICS members at various levels, implementing multilateral cooperation mechanisms in digitalisation. According to Aleeva, BRICS offers new opportunities for the use of Russian information and communication technologies, including those applied in training specialists in the field of cybersecurity.

Iran’s natural path and artificial intelligence

Even before joining BRICS, the Islamic Republic of Iran was concerned with how best to apply advanced technologies in countering international hacker groups. Today, artificial intelligence systems allow the country to identify suspects’ faces, gather and assess social media data, and detect both obvious and covert cybercriminal communications far more effectively – hundreds or even thousands of times more so – than human analysts alone.

A flagship project of the Iranian authorities is the National Information Network. Development of an “internet within the internet” in the republic has been ongoing for over a decade. The Shahkar identification system (meaning “masterpiece” in Farsi) was also created to fight online crime; it tracks senders and recipients of data via IP addresses.

This has helped reduce the scale of cyber threats, though not eliminate them entirely. Analysts note that the primary method currently used by digital criminals to attack organisations and individuals in Iran – as across much of the Middle East – is malicious software.

Globally, there is a trend away from DDoS attacks and towards cyberattacks based on social engineering (manipulating human psychology rather than exploiting technical flaws to coerce victims into certain actions). This is explained by hacktivism (drawing public attention to social, political, and other issues) and the financial motives of criminals: stealing confidential data or encrypting company files can be monetised, unlike merely disabling websites or infrastructure.

In an exclusive comment for TV BRICS, political analyst of the Islamic Republic of Iran, Roohollah Modabber, emphasised that after joining BRICS, the Iranian government should include plans for cooperation in the field of cybersecurity in its national priorities, enabling Iran – with support from its BRICS partners – to strengthen its digital sovereignty.

South Africa: virtual means real

South Africa is a country with enormous development potential, which has naturally led to the adoption of digital technologies. Their use is transforming society, the economy, governance structures, and the ways in which people communicate and conduct transactions. This new life in South Africa needs to be regulated legally. The legislative framework must ensure national security – including in areas such as blockchain and the Internet of Things.

Candidate of Economic Sciences and Associate Professor of the Department of Strategic and Innovative Development of the Financial University under the Government of the Russian Federation, Mikhail Khachaturyan, in an exclusive comment to TV BRICS, stated that South Africa today ensures cybersecurity through legislation, organisational structures, technology, and international cooperation. According to him, the aim is to protect computer systems, networks, software, and data and to prevent cybercrime incidents.

The expert highlighted the following key initiatives:

• The Protection of Personal Information Act (POPIA), which regulates the handling of personal data by public and private entities;

• The Cybercrimes Act, which criminalises hacking, identity theft, and cyberbullying.

According to Khachaturyan, notable technological solutions adopted by both the state and businesses include:

• The use of SIEM systems together with XDR and NTA solutions to improve protection and enable rapid threat response;

• Implementation of bug bounty programmes to help developers identify and fix vulnerabilities before they are exploited;

• Cybersecurity training for employees in both government agencies and private companies.

He believes South Africa’s sound approach to creating a secure digital environment lies in consistent work at the national, regional, and international levels. One example is its participation in the AfricaCERT forum, which has established a community of professionals across the continent. These experts understand how to respond to incidents, develop appropriate tools and standards, and liaise with policymakers.

Meanwhile, Ndivhuho Tshikovhi, a research fellow at Durban University of Technology (DUT), told TV BRICS that South Africa has made certain progress in its pursuit of digital sovereignty in recent years. In line with the National Cybersecurity Strategy (2015) and the Cybercrimes Act (2020), the following have been established:

• A digital hub and the ECS-CSIRT (Computer Security Incident Response Team) under the State Security Agency (SSA);

• A cyber command within the South African military;

• A state-owned company responsible for protecting government communications from unauthorised access (COMSEC).

According to Tshikovhi, the Council for Scientific and Industrial Research (CSIR) in South Africa also hosts a Virtual Cybersecurity Monitoring Centre and an Early Warning System for cybercrime.

In his view, South Africa is actively engaging in joint exercises and cyber diplomacy platforms within BRICS, particularly through South–South cooperation mechanisms (sharing resources, technology, and knowledge among countries of the Global South).

The country’s authorities are convinced that effectively combating hacker groups operating from foreign jurisdictions requires international cooperation, extradition agreements, and a sensitive approach to gathering and preserving digital evidence. At the same time, South Africa prioritises privacy and human rights protection – even in the age of rapid innovation.

BRICS and the UN: shared vision

At the 17th BRICS Summit, the leaders of the grouping voiced their support for the adoption of the United Nations Convention against Cybercrime – the first universal international treaty on information security. The document had been in development for five years. It aims to counter unauthorised access to and interception of electronic data; forgery, theft, or fraud; laundering the proceeds of criminal activity; the sexual exploitation and abuse of minors; and the distribution of child pornography, while also supporting and protecting victims of cybercriminals.

“We note the important contribution of the BRICS countries to the adoption of the Convention since the proposal for its development was made. We call on all states to sign the Convention at the earliest opportunity – in Hanoi in 2025 – and ratify it as soon as possible in accordance with their national laws, procedures, and processes to ensure its early entry into force,” the summit declaration states.

The declaration also mentions the relevance of an additional protocol to the Convention, which should cover further criminal offences, including the use of information and communication technologies for terrorist and extremist purposes, as well as for the trafficking of drugs and weapons.

Photo:
iStock