MOSCOW, September 11Authorization on websites and applications using calls threatens the security of Russians and can lead to an increase in fraud, said Sergei Babayan, head of identification product technology at VimpelCom.
At the end of July, Russian President Vladimir Putin signed a law prohibiting, from December 1, registration on Russian websites using foreign email. On Russian sites where registration is required, only four methods will be provided: by the telephone number of a Russian operator, through Gosuslugi or the Unified Biometric System, or through another information system owned by a Russian citizen or a Russian legal entity. 
The expert believes that if SMS codes and login through ID services with a phone number provide a high degree of security for data transmission, then authorization through incoming calls can lead to an increase in fraud.
According to the expert, to enter the service using a telephone call, the user must enter the last digits of the number from which he will receive a call, or a code dictated over the phone by a robot.
«»According to the TelecomDaily agency, calls for authorization are used mainly by shops and marketplaces — 59% of all implementations. However, businesses often do not think about the fact that this method has significant drawbacks. For example, a call may simply not go through operators' spam filters. But more importantly, attackers can forward the call and receive codes,» Babayan said.
The expert also noted that the company sees great interest from business in alternative methods of authorization and therefore is developing the Mobile ID service. When connected, subscribers receive not an SMS, but a special push notification to confirm the action. In addition, you can set an additional PIN code for login. “At the moment, the number of authorizations through this service already reaches 260 thousand per day,” added Babayan.