Ministry of Internal Affairs of the Republic of Uzbekistan

In today’s environment, where large-scale strategic reforms in New Uzbekistan are entering a decisive stage, it is our sacred duty and daily concern to uncompromisingly combat any threat that creates conditions for crime.

Research results from various countries show that the development of new stages in fighting crime is leading to the emergence of new types of criminal activities. In particular, the rapid growth of digitalization is modernizing the forms and methods of committing crimes. Offenses involving information technology that target individuals and their property have become a major factor in the rise of cybercrime.

Consequently, tackling cybercrime is now one of the most pressing issues for law enforcement agencies worldwide. The increasing number of cybercrimes and perpetrators is associated with emerging new threats.

According to analyses and statistical data, the global annual damage from cybercrime in 2024 reached $11.4 trillion and is projected to grow by 120% to $25.8 trillion by 2026. Some sources suggest that by 2026, the number of cybercrimes may exceed other transnational crimes by fivefold.

Moreover, by 2030, organizations combating cybercrime worldwide will need to ensure the security of around 2,000 zettabytes (two trillion terabytes) of data stored on state and private servers, cloud data centers, and personal devices. As cybercrime escalates, any organization’s database could be vulnerable to cyberattacks, necessitating strong protection measures.

When fighting cybercrime, the latent nature of such offenses must also be considered. Experts estimate cybercrime underreporting rates at 80% in the U.S., 85% in the UK, 75% in Germany, and over 90% in Russia, implying the real statistics are likely even higher.

In the context of globalization and digitalization, crimes committed via digital technologies are increasing yearly. In Uzbekistan, a transformation from traditional crimes to cybercrimes is also expanding. Over the past five years, cybercrime has increased by 68 times; in just the past year (2023), it grew by 9.1 times. During this period, complaints from individuals and organizations related to violations in cyberspace increased by 34 times.

These crimes resulted in more than 1.909 trillion Uzbek sums being stolen from citizens.

In 2019, 863 crimes in 18 categories were committed using IT, while in 2024, 58,800 crimes in 62 categories were recorded. The growing share of cybercrimes in overall crime statistics underscores the urgency of preventive measures.

In 2023, cybercrime made up 6.2% of all crimes, whereas in 2024, it reached 44.4%, meaning nearly every second crime was committed using IT. This calls for the continuous and systematic improvement of the crime prevention system.

Most cybercrimes (98%) involve bank card fraud or cyber theft.

Cybercrimes are primarily committed in the following ways:

• 60% by sending malicious links and software to gain control over bank cards or mobile devices;
• 16% through social engineering to obtain SMS verification codes for banking apps;
• 4% through issuing online loans under another person's name;
• 11% through fraud on online shopping platforms;
• 9% through various fraudulent schemes to extract money from citizens.

Based on the above data, it is evident that cybercrime is becoming a complex transnational problem in an era of widespread information and communication technologies and limitless real-time information exchange.

This necessitates the development of innovative approaches to combat cybercrime and create a safe cyberspace.

Currently, various strategies and methods are being proposed globally within academic research to prevent cybercrime and create a secure cyberspace.

For example, Ilya Sachkov, president of Group-IB (a company specializing in cybercrime investigations), states that users who know cybersecurity rules are always safe online. Group-IB developed special reminders over a decade to help prevent identity theft, but their slow dissemination has limited their effectiveness.

Leading researcher U. Dizard argues that the digital transformation of the information society presents new technologies that must also account for the potential risks they pose. He believes that strategies in this area should involve technical and economic decision-making.

Some scholars emphasize strengthening legal punishments to prevent cybercrime, while others link cybercrime prevention to the digital literacy of participants in the education system. They suggest mandatory inclusion of a “Cybersecurity Basics” subject in school curricula to foster effective use of digital education tools.

Prominent researchers have proposed innovative approaches to address the pressing problems in cybercrime prevention. Not only have research institutions developed strategies, but some developed nations also have advanced methods in place.

Countries like Singapore, the USA, South Korea, Japan, Germany, and the UK—leaders in digital technology and cybercrime prevention—have set long-term strategic goals and solved specific aspects of this issue.

International organizations, including NATO, have recognized cybercrime as a global issue. This concern is reflected in all recent governance documents of the bloc. UNICEF has also launched several major projects to protect children from the influence of cybercrime.

From this analysis, it is clear that the emergence of new types and forms of cybercrime demands continuous improvement of countermeasures.

The Presidential Decree of April 30 of this year introduces fundamentally new mechanisms to enhance Uzbekistan's fight against cybercrime, including systemic solutions to underlying problems, coordination among responsible agencies, and initiatives to raise public awareness and security.

The Presidential Decree dated April 30 of this year serves as an important new legal foundation for implementing entirely new mechanisms to strengthen efforts to combat cybercrimes committed through information technologies in our country. It aims to systematically resolve the underlying issues contributing to the occurrence of cybercrimes, establish a unified approach to combating cybercrime, coordinate the activities of all responsible state bodies and institutions in this regard, designate an authorized body to organize targeted inter-agency cooperation, and implement effective measures to foster a sense of personal security among the population.

Based on the resolution "On Measures to Further Strengthen Efforts to Combat Crimes Committed Using Information Technologies," the following measures have been determined for the early prevention of cybercrimes:

Firstly, a system will be established for banks to promptly notify law enforcement agencies about suspicious financial transactions. In this context, the Central Bank will develop a mechanism to detect suspicious transfers, and the data will be transmitted to the Ministry of Internal Affairs via an electronic data exchange system. As a result, early prevention of citizens investing in fraudulent schemes and falling victim to scams will be ensured, and there will be an opportunity to return up to 80% of the funds misappropriated through fraudulent activities, including “financial pyramids,” to their rightful owners.

Secondly, a public disclosure practice will be introduced to publish the list of banks and payment institutions with the highest number of recorded cybercrimes. Based on crime analysis, the Ministry of Internal Affairs will develop an automated and transparent rating system, and the monthly results will be widely published on official websites and in mass media. This will incentivize banks and payment institutions to strengthen their security systems, and allow citizens to identify and choose institutions with strong protection systems.

Thirdly, a full implementation of a system to restrict fake phone calls (telecom anti-fraud) will be introduced. Currently, nearly 95% of mobile device users are targeted with fake calls aimed at stealing personal information. This system will make it possible to fully prevent fraud committed through such calls.

Fourthly, a comprehensive awareness campaign called the “Cyber Culture Promotion Month” will be held annually. Analysis of cybercrimes shows that in 95% of cases, victims themselves unwittingly create the conditions for the crime. Due to insufficient cyber literacy, citizens provide personal information to fraudsters or download malicious software from social networks. Therefore, a procedure will be established to approve an annual program by the Cabinet of Ministers to conduct cyber awareness campaigns every November, involving all relevant ministries, agencies, NGOs, and public institutions.

Fifthly, continuous awareness-raising campaigns will be carried out through all state and non-state mass media outlets. Since the methods and forms of cybercrime evolve rapidly, many citizens fall victim in a short period. This demonstrates the necessity of alerting all segments of the population about new types of cyber threats to prevent negative consequences in advance. Consequently, it is essential to increase the responsibility and initiative of all media outlets and online publications, encourage individuals to warn others about new threats as a “socially beneficial act,” and promote public engagement.

Sixthly, advocacy should include targeted use of internet networks, and awareness campaigns should be organized as a nationwide movement among youth. Today, youth spend most of their time on social media, where promotion of ideas contrary to our national values is spreading widely. Although conducting targeted (paid) online advertising is costly, it has been proven to be effective in outreach.

Seventhly, a law titled “On Combating Crimes Committed Using Information Technology” will be developed. Currently, there is no established procedure for organizing cooperation among the Prosecutor General’s Office, banks, relevant agencies, and public institutions in the fight against cybercrime, nor is there a system for directing their efforts strategically. There is no unified legal document to regulate this field, and key issues remain unaddressed. With the adoption of this new law, responsible and supporting institutions, their roles and authorities in combating cybercrime will be defined, and a system for implementing comprehensive preventive measures will be created—contributing to the improvement of Uzbekistan's international reputation.

As seen from the above, early warning of citizens about cyber threats and developing their skills to adhere to the basic elements of cybersecurity are among the most pressing tasks in the fight against cybercrime.

Creating a secure cyberspace and preventing cybercrimes at an early stage is a complex process that requires everyone's awareness of their responsibility and coordinated cooperation. Ensuring cybersecurity and identifying the causes and conditions that lead to cybercrimes necessitate a scientific approach to studying pre-investigation documents, administrative offense cases, and criminal cases. One of the key factors in this process is the use of modern technologies to develop well-founded recommendations and apply them in legal practice.