Russia's\u00a0cybercrime market is now valued at $2.3 billion, nearly\u00a0double\u00a0last year\u2019s total of $1.2 billion, according to a new report by Russian security firm Group-IB. This is a fascinating claim. It\u2019s fascinating because the report gives no\u00a0information on the\u00a0data that the statement is based on.\n\nThe report includes a very nice chart (right)\u00a0that supposedly\u00a0shows "quantitative assessments of the Russian cybercrime market." At the bottom of charts like this one\u00a0there is usually\u00a0a sentence or two about\u00a0the sources of the included data. Notice anything missing?\n\n\n\tThe report says the following about the sources of the data:\n\n\n\tIt also\u00a0explains why all hackers who speak Russian should not be considered Russian hackers.\n\n\n\tThis distinction is relevant because the authors want to be clear they are only assessing Russian cybercrimes committed by Russian citizens.This brings us to another fascinating\u00a0fact\u00a0about the report: It doesn\u2019t say how the\u00a0security firm was able to determine whether or not a crime was committed by a resident of Mother Russia.\n\n\n\tGroup-IB's Alex Kuzmin sent me the following respond when I\u00a0asked about the source and nature of the data: "The quantitative part you are inquiring about comes from our investigation results and the data obtained from the Russian [law enforcement agencies]."\n\n\n\tBelieve it or not, that response is much more informative than what he had to say about determining the location of all these criminals.\u00a0Let's not even bring up the issue of the questionable reliability of Russian police data.\n\n\n\tI read a lot of reports from a lot of security companies. Most are very solid in their research. Some are even interesting. But few are as "interesting" as this Group-IB report.\n\n\n\tAfter this was published I recieved the following from Mr. Kuzmin on Friday afternoon. Draw your own conclusions.