Digital security for the new entrepreneur

Issue 6 2022 Information Security


Steve Flynn.

As South Africa’s entrepreneurial spirit blossoms, digital security is more important than ever, warns Steve Flynn, sales and marketing director at ESET Southern Africa.

The pandemic fundamentally changed the working world forever. Not only are more employees working remotely, but more people are starting their own businesses – often from home. There has been a significant increase in new entrepreneurial activity amongst working-age South Africans, up from 10,8% in 2019 to 17,5% in 2021, according to the Global Entrepreneurship Monitor (GEM) report 2021/2022 released by Stellenbosch Business School.

The digital work landscape also looks very different today. With affordable, high-bandwidth connectivity more readily available in South Africa, we are now more marketable than ever before to take on remote, higher-paying jobs for foreign entities. Covid-19 also necessitated more complex collaboration in the form of virtual meetings, ultimately improving our ability to work and communicate in isolation.

But, of course, all this digital growth has created a fertile breeding ground for new threats. ESET’s T2 2022 Threat Report, released in October, examines threats mostly impacting individual and home users. ESET phishing feeds showed a sixfold increase in shipping-themed phishing lures, with most presenting victims with fake DHL and USPS requests to verify shipping addresses. A web skimmer known as Magecart constituted three-fourths of all banking malware detections.

Furthermore, misconfigured remote access services continue to give bad actors an easy access path to company networks as Remote Desktop Protocol (RDP) attacks continue to grow. According to ESET’s threat report, for the first four months of 2022, over 100 billion such attacks were attempted, over half of which were traced back to Russian IP address blocks.

Start-up security mistakes

Small businesses or new entrepreneurs often make the mistake of thinking that they don’t need paid cybersecurity, that software from the world’s trusted vendors is secure, or that their small businesses won’t be an attractive target.

That, unfortunately, is a mistake as small businesses are easy targets. Threat actors are targeting smaller companies at scale, making it well worth their while. There are so many risk vectors today that everyone, from the sole proprietor selling wares online to large corporations, must adopt a sensible, pragmatic and responsible approach to security.

And though the scale, required expertise and products used will differ significantly depending on company size, the basics remain the same. By using strong passwords, reputable cybersecurity software, backing up and encrypting data, and being on the lookout for social engineering, you are already a long way towards an effective security posture.

When it comes to home-based employees and small entrepreneurs, there are some habitual mistakes that often open the door to threats. The most common is using very simple, easily cracked passwords. Some people even use the same password across all sites, therefore leaving every site open to being compromised by bad actors. Use a password manager and password best-practices, with multi-factor authentication wherever possible.

The same can be said for storing and saving data, from storing on unsecured physical devices through to cloud environments. Use reputable companies to store your data in the cloud and use encryption for all physical devices. Back up your data on a regular basis and upload to an offsite location, should a situation arise where your local storage and devices are compromised.

Lastly, even when home office environments have some form of security such as a router, antivirus, and secured Wi-Fi or a hardwired connection, many entrepreneurs and employees work from coffee shops or restaurants that have open, unsecured Wi-Fi, exposing their data to risk. Never use open Wi-Fi as it is not secure and leaves you and your device open to prying eyes and potential attacks.

How to choose security

Take your time researching options. You want to ensure your working environment is secured with best-of-breed cybersecurity software that can cover the entire infrastructure, requires little to no maintenance, and is easy to install and implement from the get-go.

ESET’s bundles provide protection across all devices, are easy to install and configure with best practices out of the box, making it easy for entrepreneurs to concentrate on their business and not on their security posture. It’s light on resources, operating with high efficiency and low impact on hardware. Depending on which solutions you choose, we offer world-leading cybersecurity software, banking and payment protection, device control, webcam protection, password manager, encryption, firewall and access to live grid.

You’ll also have access to local support, in local languages, from a very experienced team of engineers. When starting a new business, you should be spending your time building your business and not on security. Luckily, there are highly skilled companies out there offering secure environments, incredible security services and expert help. Recognise their importance and use them.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Managed security solutions for organisations of all sizes
Information Security
Cyberattackers have become significantly more sophisticated and determined, targeting businesses of all sizes. PwC’s Global Digital Trust Insights Survey 2025 Africa and South Africa highlights the urgent need for organisations to implement robust cyber risk mitigation strategies.

Read more...
Multiple IoT devices targeted
Information Security Residential Estate (Industry)
Mirai remains one of the top threats to IoT in 2025 due to widespread exploitation of weak login credentials and unpatched vulnerabilities, enabling large-scale botnets for DDoS attacks, data theft and other malicious activities.

Read more...
Local-first data security is South Africa's new digital fortress
Infrastructure Information Security
With many global conversations taking place about data security and privacy, a distinct and powerful message is emerging from South Africa: the critical importance of a 'local first' approach to data security.

Read more...
Sophos launches advisory services to deliver proactive cybersecurity resilience
Information Security News & Events
Sophos has launched a suite of penetration testing and application security services, designed to identify gaps in organisations’ security programs, which is informed by Sophos X-Ops Threat Intelligence and delivered by world-class experts.

Read more...
Kaspersky highlights biometric and signature risks
Information Security News & Events
AI has elevated phishing into a highly personalised threat. Large language models enable attackers to craft convincing emails, messages and websites that mimic legitimate sources, eliminating grammatical errors that once exposed scams.

Read more...
Software security is a team sport
Information Security Infrastructure
Building and maintaining secure software is not a one-team effort; it requires the collective strength and collaboration of security, engineering, and operations teams.

Read more...
Stronger cloud protection
Kaspersky Information Security Products & Solutions
Kaspersky has announced the release of an enhanced version of its Kaspersky Cloud Workload Security, delivering advanced protection for hybrid and multi-cloud environments.

Read more...
AttackIQ enters South Africa with key appointment
Information Security News & Events
AttackIQ, a provider of continuous security validation and exposure management, has announced its entry into the South African market with the appointment of Luke Cifarelli as its country manager.

Read more...
Managed security solutions for organisations of all sizes
Information Security News & Events
Cyber attackers have become significantly more sophisticated and determined, targeting businesses of all sizes. PwC’s Global Digital Trust Insights Survey 2025 Africa and South Africa highlights the urgent need for organisations to implement robust cyber risk mitigation strategies.

Read more...
Data resilience at VeeamON
Technews Publishing SMART Security Solutions Infrastructure Information Security
SMART Security Solutions attended the VeeamON Tour in Johannesburg in August to learn more about data resilience and Veeam’s initiatives to enhance data protection, both on-site and in the cloud.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.