In 2023, web resources in Uzbekistan were targeted by 11 million 20 thousand 235 cyberattacks, the Cybersecurity Center of the Ministry of Internal Affairs reported.
It is noted that, according to the analysis of the geographic significance of cyberattacks in 2023, the majority of cyberattacks were organized using IP addresses from the Netherlands (759.5 thousand), the USA (696.6 thousand), Russia (100 thousand), Germany (58 thousand), India (53 thousand), and China (51 thousand).
Among the types of cyberattacks organized on web resources connected to the monitoring system, the most commonly used were as follows:
— SQL injection;
— Forced use of protocols;
— Unauthorized access to files with restricted access;
— Remote code execution;
— Distribution of malware;
— Suspicious requests;
— Spreading of PHP information;
— PHP injection;
— Distribution of Java data;
— Organization of attacks according to protocol.
It is also noted that incidents involving attempts at cybersecurity breaches detected on web resources of government bodies were caused by the following vulnerabilities of web resources:
— Lack of verification and filtering of user content;
— Coding weaknesses (PHP plugins, csfr vulnerabilities, cross-browser vulnerabilities, etc.);
— Weak password protection.