The number of internet users in Mongolia reached 4.5 million in the first half of this year. By comparison, the figure stood at only around 2.9 million last year, marking a dramatic surge within the span of one year. In the capital city, 85.3 percent of residents are internet users, while the rate in rural areas is 67.6 percent. Although Mongolia’s population is relatively small compared to many other nations, these statistics clearly show that the country has an exceptionally high level of internet usage. Today, experts emphasize that there is virtually no country left untouched by the influence of the internet, nor any nation that does not carefully consider how to govern and utilize it responsibly and efficiently.
The International Chamber of Commerce (ICC) has characterized the internet as a critical driving force behind global trade and economic development. In essence, the internet has become a bridge that connects people, markets, and ideas across the world. However, ensuring its safe, ethical, and proper use has emerged as an urgent global challenge. Moreover, countries such as the United States have officially recognized cyberspace as the fifth domain of warfare—joining land, sea, air, and outer space. Cyber warfare, which targets and disrupts a nation’s information technology infrastructure, is now regarded as being just as destructive and consequential as traditional military conflict. In the era of rapidly advancing technology, Mongolia, too, faces mounting pressure to strengthen its cybersecurity preparedness, reinforce its digital defenses, and build robust “walls” capable of withstanding foreign cyber intrusions.
INFORMATION SECURITY AUDITS ARE ESSENTIAL
Government organizations are the primary collectors of individuals’ most sensitive and confidential information. Private-sector institutions have likewise begun gathering increasing amounts of personal data from citizens. Yet, despite collecting vast databases of information, it remains uncertain whether these entities possess the capacity to store, protect, and manage such data without risking breaches of privacy or violations of citizens’ rights. Numerous cases in recent years have shown that ministries, public agencies, hospitals—both private and state-run—and banking and financial institutions have fallen victim to cyberattacks, leading to the leakage of user data.
Notably, 70 percent of cyberattacks directed at Mongolia target the Government and its affiliated agencies. An additional 11 percent are aimed at organizations under the Parliament, while 14 percent target the health sector, which has increasingly become a prime area of vulnerability. According to the Ministry for Digital Development, Innovation and Communications (MDDIC), more than 128 million cyber “attacks” originating from Russia were detected last year—the highest number recorded. Meanwhile, over 65 million suspicious attempts came from the United States, and more than 50 million from China. These figures underscore a clear reality: targeted attempts to steal or exploit sensitive personal and governmental information are ongoing, persistent, and intensifying. Across Mongolia, approximately 60,000 to 90,000 cyberattacks occur every week. Within this environment, the crucial questions are how effectively the country is preventing such attacks and what immediate response mechanisms are in place when breaches occur.
Last year, MDDIC released the findings of a cybersecurity assessment conducted across 67 government institutions. The results revealed that 29.4 percent of ministries, state agencies, central and local government bodies surveyed had experienced some form of cyberattack. Even more alarming was that 70.5 percent either had been attacked or were unaware of whether breaches had occurred at all. Additionally, 56.6 percent lacked policies or official documentation related to information security; 30 percent had never conducted a cybersecurity risk assessment; and 55.3 percent did not adhere to any recognized information security standards. A technical inspection of computers and equipment used for official purposes found that 21 percent contained malware, while 15 percent were deemed highly vulnerable to future attacks.
In 2024, the ministry, in collaboration with the Global Cybersecurity Capacity Centre at the University of Oxford, launched a comprehensive study to evaluate Mongolia’s current cybersecurity landscape. The findings, presented in February, highlighted several urgent needs. These included strengthening the alignment of cybersecurity policies and legal frameworks, increasing public awareness and digital literacy, building a more skilled and capable cybersecurity workforce, and expanding Mongolia’s international cooperation and engagement in cybersecurity initiatives.
According to the Global Cybersecurity Index issued by the International Telecommunication Union, Mongolia scored 56 points, ranking 103rd out of 194 countries—placing it in the “developing” category. The country performed relatively well in areas related to legislation and organizational structure, scoring between 13.6 and 19.1 out of 20 points. However, Mongolia lagged significantly in technical capacity, workforce development, and collaborative efforts. Going forward, the government aims to elevate Mongolia’s standing to the “maturing” level of the index and eventually reach the exemplary fifth tier—a stage at which the country would possess strong, resilient, and fully integrated cybersecurity systems capable of effectively countering evolving digital threats.
ADMINISTRATION PLAYS CRUCIAL ROLE
The Law on Cyber Security states government institutions to conduct both information security audits and cybersecurity risk assessments. Mongolia currently has more than 40 organizations authorized to perform such risk assessments. However, many government bodies remain reluctant to undergo these evaluations. According to sources, some agencies deliberately choose to pay the penalty for non-compliance rather than have their systems assessed, largely because the cost of a risk assessment increases based on the number of computers that need to be examined.
Public institutions and private companies that manage large volumes of citizen data are required to submit their annual risk assessment reports to the relevant authorities. Government organizations, for example, must report to the National Center Against Cyber-Attacks and Violations while private-sector entities send their reports to the Public Computer Security Incident Response Team.
To understand the importance of identifying and preventing risks, Information Security Auditor B.Erdem offered insights into why such assessments matter. According to him, “Every organization today faces the pressing challenge of safeguarding the data they collect and ensuring the continuity of their security systems. Leadership or administration commitment plays a significant role in this. Under the ISO/IEC 27001:2013 information security management standard, leadership responsibility is considered the most critical element. Without strong leadership, building and maintaining such a system becomes extremely difficult.”
He added that cybersecurity is not a one-time task but a continuous, ongoing process. “There is no system in the world that is 100 percent unhackable. There will always be technologies that can bypass defenses. That is why strict adherence to laws, regulations, and standards is essential for protecting against cyber threats.” B.Erdem then continued, “These standards clearly outline where risks may arise and what steps must be taken in the event of a breach. Once organizations implement these practices, auditors step in to inspect and provide recommendations. Risk assessment is one of the most important components of information security and must be conducted annually.”
According to him, implementing standards such as ISO/IEC 27001 even helps prevent basic internal threats—for example, ensuring that an employee who leaves their job cannot easily leak the organization’s internal information. “Unfortunately, in Mongolia, cases of insiders leaking organizational data are not uncommon,” he noted.
IS MONGOLIA PREPARED FOR CYBER WARFARE?
In recent years, an increasing number of countries have become targets of cyberattacks carried out by state-sponsored hacking groups. According to research by Group-IB, a Singapore-based global cybersecurity company established in 2003, there were 828 state-sponsored cyberattacks worldwide last year. Of these, 15.5 percent targeted national governments and armed forces—a figure that represents a 58 percent increase compared to 2023.
These attacks often manifest in various forms, including malicious links designed to trick users or the exploitation of weak networks in neighboring countries. Telecommunications networks have also become common targets. In Europe and Africa, for instance, cyberattacks have been linked to the disruption of undersea cables, while in Ukraine, they have targeted terrestrial infrastructure. In the United States, attackers have attempted to infiltrate government surveillance systems. The research found that India was the most frequent target of these attacks. Overall, 31.4 percent of all state-sponsored attacks last year were directed at government institutions.
The study also revealed that the personal information of more than 6.4 billion users worldwide was leaked or put at risk last year. The most commonly compromised data included email addresses, phone numbers, and passwords—often stolen through phishing schemes and database breaches.
Mongolia has not been spared from these threats. Both of its neighboring countries—Russia and China—as well as the United States have continued to launch persistent waves of cyber intrusions targeting Mongolian networks. Although Mongolia has established a legal and policy framework for cybersecurity, including the Law on Cyber Security and the National Cybersecurity Strategy, the challenge now lies in ensuring effective implementation, enforcing compliance, and making adequate financial investments.
There is promising news, however: beginning January 1 of next year, Mongolia will have a dedicated national cybersecurity budget for the first time. Yet, one of the most serious problems remains unresolved—the severe shortage of skilled specialists and trained professionals in the cybersecurity sector. How this gap will be filled still remains uncertain.
In the face of rapidly escalating global cyber threats, Mongolia stands at a pivotal moment. The country has begun laying the legal and structural foundations necessary to protect its digital sovereignty, yet the true test lies in transforming these frameworks into effective, day-to-day practice. Building a resilient cybersecurity system will require not only financial investment and modern technology, but also strong leadership, skilled human resources, and a culture that prioritizes digital vigilance. As cyberattacks grow more sophisticated and state-sponsored groups become increasingly skilled, Mongolia’s ability to safeguard critical infrastructure and citizen data will depend on its commitment to sustained, coordinated, and forward-looking cybersecurity efforts.

Published Date:2025-12-01