Maybe it's time to panic

October 2013 News & Events

I spoke to someone dealing in identity authentication recently and he was telling me how some of South Africa’s business leaders are dead against the Protection of Personal Information (PoPI) Act. According to these leaders, and I’m not sure that’s how I would describe them, they don’t want to be forced to admit when their systems have been breached and customer data stolen. Apparently that would cause a panic.

I suppose they would prefer to see their poor call centre agents endure heaps of abuse from clients who suddenly discover their accounts have been cleared or their credit limits maxed out. Surely a concerted effort from business to deal with these breaches will deliver better results.

If PoPI is enforced these companies will have to make a plan because they can’t simply fire some lowly risk manager or IT manager anymore, after PoPI it’s the directors who will be held accountable for how they run their companies. I still say that as soon as business people move from a strategy of covering their posteriors to actively looking for solutions to these breaches we’ll have a host of solutions we can rely on. Biometrics is one of them.

In the latest 2013 Data Breach Investigations Report from Verizon, compiled in cooperation with organisations as diverse as the US Secret Service through to the Australian Federal Police (and a bunch of other organisations), it was found that 76% of network exploits were as a result of 'exploited weak or stolen credentials'. Moreover, 75% of these breaches were driven by 'financial motives'.

So a network breach isn’t just an inconvenience, the criminals are looking to make a profit. And for those many companies that think it’s a bonus to allow users to access the work network from home or from their mobiles because they can squeeze an hour or two of extra work out of them, but don’t have the security in place to protect their networks, the report says 71% targeted user devices.

Another fun fact from the report is that 66% of these breaches took 'months or more to discover'. If you like well written and researched horror stories, you can download the report at www.verizonenterprise.com/DBIR/2013/.

Another well written report you get absolutely free of charge is the Access and Identity Management Handbook 2014, which is being posted with this issue of Hi-Tech Security Solutions. We had tremendous support in putting this annual together and we hear it’s the best one we’ve ever done – but then I would say that. My thanks to everyone involved who survived the ordeal.

Please feel free to let me know your impressions, criticisms and suggestions about this issue of Hi-Tech Security Solutions as well as the handbook. Your opinions always help when planning future editions. Mail me at andrew@technews.co.za

Andrew Seldon

Editor



Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Pentagon appointed as Milestone distributor
Elvey Security Technologies News & Events Surveillance
Milestone Systems appointed Pentagon Distribution (an Elvey Group company within the Hudaco Group of Companies) as a distributor. XProtect’s open architecture means no lock-in and the ability to customise the connected video solution that will accomplish the job.

Read more...
Digital transformation in mines
NEC XON Technews Publishing Mining (Industry)
Digital transformation has been hyped to death, but is a reality all companies in all industries need to address, including the mining sector. BCX and NEC XON weigh in on the challenges mines face.

Read more...
Fire safety in mining
Technews Publishing Mining (Industry)
Clinton Hodgson, Head of the Industrial Fire & Life Safety Division at FS Systems International, provides SMART Security Solutions with his insights into fire safety risks and solutions as they pertain to the mining industry.

Read more...
Cybersecurity in mining
Technews Publishing Mining (Industry)
One does not usually associate mining with cybersecurity, but as big technology users (including some legacy technology that was not designed for cyber risks), mines are at risk from cyber threats in several areas.

Read more...
Mines require proof of performance
Technews Publishing Mining (Industry)
The relatively hostile environment and remote locations of mining establishments mean that any electronic/technical implementations have to be easily installed, require little or no maintenance and, once commissioned, require no adjustment.

Read more...
From the Editor's Desk: Something old and something new
Technews Publishing News & Events
      Welcome to the 2024 edition of SMART Security Solutions’ Mining Handbook. Mining is a challenging industry for security professionals, although security is a challenge on this continent, no matter your ...

Read more...
A long career in mining security
Technews Publishing Editor's Choice Mining (Industry) Risk Management & Resilience
Nash Lutchman recently retired from a security and law enforcement career, initially as a police officer, and for the past 16 years as a leader of risk and security operations in the mining industry.

Read more...
A constant armed struggle
Technews Publishing XtraVision Editor's Choice Integrated Solutions Mining (Industry) IoT & Automation
SMART Security Solutions asked a few people involved in servicing mines to join us for a virtual round table and give us their insights into mine security today. A podcast of the discussion will be released shortly-stay tuned.

Read more...
Tips and tools for trade businesses
News & Events Training & Education
ServCraft brings together trade industry associations and corporations to launch blox, a digital content platform and community impacting lives, businesses and industries across hundreds of thousands of trade business SMEs.

Read more...
Entries to southern Africa OSPA Awards now open
Technews Publishing Securex South Africa Editor's Choice News & Events
The southern Africa OSPAs are part of a global awards scheme that recognises and rewards teams, individuals and organisations for their commitment and outstanding performance within the security sector.

Read more...