ISPA to launch cyber security code in South Africa
SECURITYBy BiztechAfrica - May 4, 2012, 8:13 a.m.
South Africa's Internet Service Providers' Association (ISPA) has announced it will lead the development of a new voluntary code of practice to improve cyber security for end-users.
Known as the icode, and developed in conjunction with Australia's Internet Industry Association, which pioneered the approach in 2010, the code will provide a consistent approach for South African ISPs to help inform, educate and protect their customers in relation to cyber security. South Africa would become the second country in the world to implement network level protection of vulnerable end users under the icode banner.
By following the code, ISPs will contribute to reducing the number of compromised computers in South Africa and enhance the overall security of the South African and international Internet.
"The increasing threat of zombied computers - computers which have been essentially hijacked and are under the control of criminals or other third parties - presents a real risk to users. Identity theft, fraud, and increases in spam are all possible consequences of compromised computers."
"The problem we now face as an industry," said ISPA spokesperson Ant Brooks, "is the sophistication of attacks on end-user computers. Scanning at the network level by ISPs can provide an early warning to users when the user may be completely unaware there's a problem with their computer."
"An infected computer is not only bad for the end-user, it's also a problem for the integrity of networks themselves because it increases the amount of spam and other "bad traffic". This is why ISPs are telling us they will support the scheme."
Australia's Internet Industry Association chairman Bruce Linn welcomed the announcement. "The Australian experience has shown that end-users appreciate knowing that their ISP is watching for signs of infection on the network.
Most users are initially very surprised to find out that their machine may be infected by 'malware' such as viruses. But they are relieved when they are given the information and tools to restore their computer's security."
The initiative was also welcomed by the banking sector. "South Africa's banks are committed to educating consumers about online security, and constantly review security measures to offer South African Internet users as safe an online banking experience as possible," says Mrs Kalyani Pillay, CEO of the South African Banking Risk Information Centre (SABRIC).
"SABRIC welcomes the launch of the icode project, and is encouraged by the commitment of ISPs towards assisting their customers with the security of their computers and their personal information."
ISPA spokesperson Ant Brooks emphasised that the new code was designed to protect the privacy of end-users.
"The network level scanning that allows ISPs to detect signs of infected machines does not in any way involve looking at what users are themselves doing online. On the contrary, the scheme is designed to reduce the incidence of the single biggest threat to end-user privacy -- the presence of malware which can steal personal information and relay it to criminals overseas."
The code is designed to respond to this challenge by providing a consistent approach for South African ISPs to help inform, educate and protect their customers in relation to cyber security. ISPA believes a uniform national (and international) approach is warranted. The code will deliver a standard set of best practices for ISPs to follow to preserve the integrity of their networks.
The icode is expected to contain four main elements:
- A notification/management system for compromised computers
- A standardised information resource for end users
- A comprehensive resource for ISPs to access the latest threat information
- A reporting mechanism in cases of extreme threat back to national security agencies to facilitate a national high level view of attack
MORE SECURITY NEWS
2014 Banking and ICT summits pegged for Uganda, Zambia and EthiopiaCyber Security Africa has announced that its 2014 Banking and ICT summits will be hosted in Uganda, Zambia and Ethiopia. Read More
Security in 2014: Money and MayhemIT security stands at the frontier of a fight for wealth and information, says Andrew Kirkland, Regional Director Africa, Trustwave. Read More
McAfee delivers on Intel vision of free mobile securityMcAfee has announced details of free protection for consumers on any Android and iOS mobile device. Read More
Botswana financial institutions exposed to cyber crimeBotswana’s financial institutions face a growing risk of cyber fraud, says BIC MD Dziki Nganunu. Read More
New Android threat risesThe AndroRAT is an example of how cyber criminals can manipulate apps for their own gain, says Intact Security. Read More
Arbor Networks partners with Networks Unlimited in SSAArbor Networks has announced a new partnership with Networks Unlimited to help organisations better mitigate and defend against the growing DDoS threat to their customers’ businesses. Read More
Trend Micro’s 2013 threat roundup highlights private data profitabilityAccording to Trend Micro Incorporated’s 2013 annual threat roundup report, “security breaches, cyber criminals, and organised attacks made it nearly impossible to keep personal and financial data private. Read More
Hardcore goons use mobiles to scare, extort KenyansHardcore criminals in prison are reported to be using mobile phones to extort money and scare Kenyan civilians. Read More
Phone scammers back in businessMicrosoft has warned of scam artists who defraud PC users by pretending to work for Microsoft. Read More
ADT, McAfee study finds parallels between physical, digital securityMcAfee has released the results of a survey that takes a look at the important parallels between personal and online security. Read More
FEATURED STORYMACRA demystifies spectrum management
Malawi's regulator explains the issues around spectrum allocation. Gregory Gondwe reports.
BEST READ NEWS
IN DEPTHYouthConnekt launches Mobile Apps for Human Development Challenge in Rwanda
Rwanda’s Ministry of Youth and ICT and the UNDP, in close collaboration with Motorola Solutions, will power a Mobile App Challenge that will be implemented by YouthConnekt.