Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

South Africa is a target for cyber attacks

November 2017 Editor's Choice, Information Security, Security Services & Risk Management

Following the announcement by large South African data centre operator and website hosting service provider Hetzner, that a key database had been hacked, Maeson Maherry, chief solutions officer for LAWtrust, Africa’s leading cybersecurity firm, says numerous data breaches over the past few weeks show South Africa is a “focus area for cyber attacks”.

The Hetzner breach – which was discovered on Wednesday 1 November, follows the revelation two weeks ago that over 30-million South Africans’ personal information (including property ownership, income and employment history) had been exposed online, in what is considered South Africa’s biggest data breach.

“We are effectively in a Cold War where the goal has become less about disruption and more about stealing data,” Maherry says. He says it is imperative that South African businesses act to protect their data and their brand, and retain customer confidence.

“Businesses have to provide multilayered defences to protect the data and this has to be done in such a way that the information services are still accessible and convenient to customers.”

This means businesses need to put in place strong authentication for all administrators, employees and customers in light of the breaches. Companies also have to encrypt everything, including data in databases, file servers and data in the cloud.

“It is not a question anymore of whether an organisation will be breached, but how and when. Therefore, businesses must consider bringing the protection close to data itself – encrypt your data, while taking into account preservation of business functionalities and convenience for the users. Encrypting everything will become the norm in the future,” says Dr Aleksandar Valjarevic, head of pre-sales at LAWtrust.

Maherry adds that businesses also have to consider how they manage the cryptographic keys, SSH keys and digital certificates that are the foundation of the security plumbed into enterprise and cloud IT. “If an employee can leave with a copy of the SSH key for a server and a business can’t do anything about it, then that business is in extreme danger,” he says.

For more information contact LAWtrust, +27 (0)11 731 8238, robyn@lawholdings.co.za, www.lawholdings.co.za





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

NEC XON secures mobile provider’s hybrid identities
NEC XON Access Control & Identity Management Information Security Commercial (Industry)
For a leading South African telecommunications operator, identity protection has become a strategic priority as identity-centric attacks proliferate across the industry. The company faced mounting pressure to secure both human and non-human identities across complex hybrid environments.

Read more...
Rise in malicious insider threat reports
News & Events Information Security
Mimecast Study finds 46% of SA organisations report a rise in malicious insider threat reports over the past year: reveals disconnect between security awareness and technical controls as AI-powered attacks accelerate.

Read more...
Surveillance & AI roundtable
DeepAlert Lytehouse Refraime SMART Security Solutions Technews Publishing Editor's Choice Surveillance Integrated Solutions AI & Data Analytics
SMART Security Solutions held an online roundtable with a few surveillance experts to explore the intersection of surveillance and AI, gaining insights into the market and how control rooms are evolving.

Read more...
New campaign exploiting Google Tasks notifications
News & Events Information Security
New phishing scheme abuses legitimate Google Tasks notifications to trick corporate users into revealing corporate login credentials, which can then be used to gain unauthorised access to company systems, steal data, or launch further attacks.

Read more...
“This Is Theft!” SASA slams Mafoko Security
News & Events Security Services & Risk Management Associations
The Security Association of South Africa (SASA) has issued a stark warning that the long-running Mafoko Security Patrols scandal is no longer an isolated case of employer misconduct, but evidence of a systemic failure in South Africa’s regulatory and governance structures.

Read more...
Making a mesh for security
Information Security Security Services & Risk Management
Credential-based attacks have reached epidemic levels. For African CISOs in particular, the message is clear: identity is now the perimeter, and defences must reflect that reality with coherence and context.

Read more...
What’s in store for PAM and IAM?
Access Control & Identity Management Information Security
Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in the coming year, driven by evolving cybersecurity realities, hybridisation, AI, and more.

Read more...
The challenges of cybersecurity in access control
Technews Publishing SMART Security Solutions Access Control & Identity Management Information Security
SMART Security Solutions summarises the key points dealing with modern cyber risks facing access control systems, from Mercury Security’s white paper “Meeting the Challenges of Cybersecurity in Access Control: A Future-Ready Approach.”

Read more...
Securing your access hardware and software
SMART Security Solutions Technews Publishing RBH Access Technologies Access Control & Identity Management Information Security
Securing access control technology is critical for physical and digital security. Every interaction between readers, controllers, and host systems creates a potential attack point for those with nefarious intent.

Read more...
From friction to trust
Information Security Security Services & Risk Management Financial (Industry)
Historically, fraud prevention has been viewed as a trade-off between robust security and a seamless customer journey, with security often prevailing. However, this can impair business functionality or complicate the customer journey with multiple logins and authentication steps.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.