SA cyber threat barometer released
SECURITY| Sept. 28, 2012, 9:11 p.m.
With over R2.6bn stolen in cybercrimes in SA in the past 18 months, a new report maps out the biggest cyber threats in the country.
The 2012/13 South African Cyber Threat Barometer was released by IT security firm Wolfpack Information Risk in Johannesburg today. Wolfpack Managing Director Craig Rosewarne said the report was the result of extensive research into the cyber threat landscape in South Africa.
“The report is intended to provide ongoing insight to support the Cabinet’s recently-approved National Cyber Security Policy Framework,” he said, and was researched and compiled with the support of the British High Commission.
Rosewarne said while the true cost of cyber crime was difficult to assess, conservative estimates showed that over R2.6 billion rand had been stolen in cyber crimes in the country in the past 18 months. With a recovery rate of up to 75%, much of the stolen money had been recovered, but the impact and additional costs of cyber crime were far greater than this, he noted. Relatively few cyber crimes are reported and successfully prosecuted in SA, Rosewarne said.
The report warned that the African continent as a whole is particularly vulnerable to cyber security threats. With cheaper and faster internet, more Africans will be ‘always on’ or continually connected, increasing the number of ‘new’ internet users who are not security-savvy, it said.
Rosewarne noted that cyber crime threatens everyone, and called on the public and private sector to work together to combat it. He said key issues identified in the research included poor threat management, with inadequate maintenance and management of audit logs; the lack of a national Computer Security Incident Response Team (CIRT) in SA and a lack of deep technical skills. He added that archaic processes and a lack of information security skills in law enforcement agencies made reporting and prosecution in cyber crimes difficult.
Collaboration between the public and private sector, specialised training and the establishment of a CIRT were among the recommendations made to combat the threats.
Stakeholders in key sectors were polled on what they saw as the greatest potential threats to their industries. The threat of denial of service (DoS) attacks and the unavailability of ICT were cited as the highest potential cyber threats against government and financial sectors and were ranked high in the telecoms sector.
Intrusions and economic fraud were ranked as the second-greatest cyber threats in SA.
On the question of what are seen as the services most likely to be targeted by cyber criminals in SA, respondents said internet banking, e-commerce web sites and social and entertainment web sites were likely targets. Respondents in government felt that critical information infrastructure was also at risk.
MORE SECURITY NEWS
Online bank accounts targeted over 5m timesDuring the past quarter, there were 5.68 million notifications about attempted malware infections to steal money from users via online access to bank accounts, says Kaspersky. Read More
Nigeria’s electronic fraud losses hit N4bWith the introduction of the cashless economy scheme of the Central Bank of Nigeria (CBN) designed to discourage use of cash, electronic crooks seem to have become more daring, fleecing banks and customers of over N4 billion. Read More
The human firewall – turning security’s weakest link into IT’s strongest allyWhen it comes to cyber security, people are often the weakest link. A comprehensive approach to ‘people security’ is essential in closing the gap on this particular vulnerability, says Galix. Read More
FNB Botswana sensitizes customers on cyber crimeFNB Botswana has advised customers to be vigilant of scammers when purchasing via money transfer and online platforms. Read More
Worse than it seems: DDoS attacks coincide with other threatsA survey undertaken by Kaspersky Lab and B2B International has demonstrated that, in most cases, a DDoS attack is only the tip of the attack iceberg. Read More
Survey: 98 days to identify advanced cyber threatsA Ponemon Institute survey has found the average time span for financial services to identify an attack inside the network is 98 days. Read More
Corporations, others to up security spend by 25%The app economy demands a new approach to security, says a recent study. Read More
P@$$wORD_1: How secure is your password?With organisations being blamed for loopholes that give hackers access to information, companies are increasingly looking at how to better protect their users’ passwords. Read More
Botswana urged to rethink cyber security threatsThe founder of the African Cyber Risk Institute (ACRI) says now is the time for Botswana to create a national cyber risk agenda. Read More
FEATURED STORYeCommerce in Africa urged to take advantage of mobile
The Executive Chairman of Alltel has urged operators of eCommerce in Ghana and Africa as a whole to take advantage of the current trend for Africans to trade online via their mobile handsets.
BEST READ NEWS
IN DEPTHNigeria needs $25b investment in broadband, says Wood
Telecoms executive Adrian Wood speaks to Kokumo Goodie about investment potential in Nigeria.