SA cyber threat barometer released
SECURITYBy BiztechAfrica - Sept. 28, 2012, 9:11 p.m.
With over R2.6bn stolen in cybercrimes in SA in the past 18 months, a new report maps out the biggest cyber threats in the country.
The 2012/13 South African Cyber Threat Barometer was released by IT security firm Wolfpack Information Risk in Johannesburg today. Wolfpack Managing Director Craig Rosewarne said the report was the result of extensive research into the cyber threat landscape in South Africa.
“The report is intended to provide ongoing insight to support the Cabinet’s recently-approved National Cyber Security Policy Framework,” he said, and was researched and compiled with the support of the British High Commission.
Rosewarne said while the true cost of cyber crime was difficult to assess, conservative estimates showed that over R2.6 billion rand had been stolen in cyber crimes in the country in the past 18 months. With a recovery rate of up to 75%, much of the stolen money had been recovered, but the impact and additional costs of cyber crime were far greater than this, he noted. Relatively few cyber crimes are reported and successfully prosecuted in SA, Rosewarne said.
The report warned that the African continent as a whole is particularly vulnerable to cyber security threats. With cheaper and faster internet, more Africans will be ‘always on’ or continually connected, increasing the number of ‘new’ internet users who are not security-savvy, it said.
Rosewarne noted that cyber crime threatens everyone, and called on the public and private sector to work together to combat it. He said key issues identified in the research included poor threat management, with inadequate maintenance and management of audit logs; the lack of a national Computer Security Incident Response Team (CIRT) in SA and a lack of deep technical skills. He added that archaic processes and a lack of information security skills in law enforcement agencies made reporting and prosecution in cyber crimes difficult.
Collaboration between the public and private sector, specialised training and the establishment of a CIRT were among the recommendations made to combat the threats.
Stakeholders in key sectors were polled on what they saw as the greatest potential threats to their industries. The threat of denial of service (DoS) attacks and the unavailability of ICT were cited as the highest potential cyber threats against government and financial sectors and were ranked high in the telecoms sector.
Intrusions and economic fraud were ranked as the second-greatest cyber threats in SA.
On the question of what are seen as the services most likely to be targeted by cyber criminals in SA, respondents said internet banking, e-commerce web sites and social and entertainment web sites were likely targets. Respondents in government felt that critical information infrastructure was also at risk.
MORE SECURITY NEWS
Ethiopian Airline to support Banking and ICT Summit 2013The Ethiopian Airline has confirmed its sponsorship of the Ethiopian Banking and ICT Summit 2013, to be held in Addis Ababa in August. Read More
Financial institutions gamble with information securityA financial institution not investing in a long term information security strategy is gambling with the protection of corporate and client data, according to information security experts at 4Di Privaca. Read More
Golden age of cloud-based security services comingCloud-based security services are on the rise, says Jayson O Reilly, Director – Sales and Innovation at DRS. Read More
‘Operation NetTraveler’ targets Government organisationsKaspersky Lab has published details of the malicious NetTraveler Toolkit, which infected over 350 high-profile victims for data theft and surveillance. Read More
Kenya could be vulnerable, warns Kaspersky LabWhile Kenya may be ‘booming’ in terms of Internet penetration and growth, Kaspersky Lab warns that with such growth comes ‘great responsibility’ – especially from an IT security point of view. Read More
Biometric technology value across sectorsBiometric access control is finding more widespread applications across various sectors, says Accsys. Read More
Cloud, security event set for Zimbabwe in JulyThe Cloud Computing & Information Security Conference, CCISC 2013, will go ahead in Harare in July. Read More
Yahoo reported to be latest hack victimYahoo is reported to have become the latest high profile hacking victim, with reports suggesting up to 22 million login names may have been stolen by hackers. Read More
Compliance vital for biometric systemsWith the growing demand for biometrics in Identity Management and Know Your Customer strategies, the issue of compliance should be considered a priority, says Ideco. Read More
FEATURED STORYAirtime transfer big business in Ivory Coast
Airtime transferred direct to mobile is proving popular among consumers and is generating jobs in Ivory Coast.
BEST READ NEWS
IN DEPTHAfrica must think beyond blue collar jobs
Pan-African job creation initiatives need to look beyond basic job creation, to high level ICT skills development, to develop the economies, says Greg Vercellotti, executive director at Dariel Solutions.