In the news

Most Read

  • Telkom CEO Sipho Maseko to step down
    Telkom has announced that its CEO and executive director Sipho Maseko will step down on 30 June 2022. The telecoms company said the process to appoint a successor is well underway and a designated group CEO will be announced in the not too distant future.
  • How cooking oil brought a moment of joy during a dreadful week
    It is possible that cooking oil prevented more looting in South Africa in the last week than the president, the ANC, the intelligence community, the army and the police combined. This, without question, says something about the versatility of the product. It says even more about the state of the state. When you are shown up by canola, you might want to revisit your strategy. By Howard Feldman
  • Park Advertising launches digital performance unit, Lucid Media
    Performance Media across Search, Social and Programmatic platforms is the single fastest growing area of digital media in South Africa. Combine that with the detailed analysis of campaign management, tagging and ad operations, and it becomes apparent that these highly specialist functions require a highly specialised unit.
  • Transnet hit by cyberattack - Operations disrupted nationwide
    The Transnet Port Terminals website has been hacked, implying that all companies under Transnet have been affected. All Transnet websites were down at the time when reporting was done for this SA Trucker article. The publication cited sources who requested to remain anonymous because they are not allowed to speak to the media.
  • #BehindtheBrandManager: Meet Tamsin Darroch of Kellogg's South Africa
    Few food brands have the historical connection with consumers around the world as Kellogg's does, having held meaning at the breakfast table for over a century. By Lauren Hartzenberg
  • Business unusual for small enterprises on the road to recovery
    The Covid-19 pandemic has hit South Africa's small business sector hard and there are grim statistics to bear this out. Those statistics will not be repeated here. After all, if you are a small business owner setting out on the road to recovery, the last thing you probably want is more details of the toll the pandemic has taken on small enterprises. Far more useful would be some good, solid tips on how to build back better after any business setbacks. By Ameen Hassen
Show more
Advertise on Bizcommunity

Subscribe to industry newsletters

#BizTrends2021: What the new year holds for cybersecurity

The year 2020 has been one of the most challenging years in recent memory, both in terms of the effects of the coronavirus pandemic on societies and economies around the world, and the impact of a dramatic rise in cybercrime.
Brian Pinnock, cybersecurity expert at Mimecast

As the virus spread and countries around the world implemented lockdowns, cybercriminals sprang into action and launched attacks on businesses, consumers and critical infrastructure at an unprecedented scale. In the first 100 days of coronavirus, Mimecast researchers detected huge increases in spam attacks - up 46%, impersonation attacks - up 75% - and malware, which spiked by 385%.

The continued disruption caused by the pandemic and the ’new normal’ of remote work will likely create fertile ground for an array of cyberattacks in 2021. I chatted to a few of my colleagues about what they think the future holds and here are the cyber risks that we believe businesses and consumers will face in 2021:

Protecting public sector systems in the cloud

The adoption of cloud services among South African public sector organisations is gaining momentum and is enabling greater agility. But it also introduces new risks. In 2021, public sector ICT leaders will seek growing levels of support from technology and cybersecurity partners to build greater cyber resilience in an effort to protect systems and infrastructure from cyberattacks.

As more systems move to the cloud, new strategies will be needed to ensure high levels of security and compliance to public sector policy while maintaining data sovereignty. Cloud adoption will help the public sector with productivity and the increased ability to deliver services. But downtime due to an outage or a cyberattack could lead to widespread disruption of critical national infrastructure if these departments are all dependent on a single cloud provider.

Ransomware will be used to sow chaos

Nearly half - 45% - of South African respondents in Mimecast’s State of Email Security 2020 report said ransomware attacks had impacted their organisation. Common consequences of successful attacks included data loss, downtime, financial loss and damage to the reputation of the affected organisation, impacting their customers’ trust.

It is likely that we will see at least one major new ransomware strain that will compromise global networks in 2021. The objective won’t be money, but anarchy, as DoppelPaymer proved in 2020 when an attack on a German hospital prevented a dying lady from getting to hospital in time. Some have even labelled this is the first officially recorded death due to cyberattack.

All eyes will be on the world’s pharmaceutical companies and researchers as they roll out Covid-19 vaccines. We’ve already seen cybercriminals turning their attention here and this is only likely to continue, with the intention to cause widespread disruption. Mimecast’s Threat Intelligence Centre predicts it is also a near-certainty that cybercriminals will continue to target supply chain operations, with attacks focused particularly against the transportation, storage and delivery networks needed for an effective mass vaccination response.

Remote workers become prime targets

With many people likely to continue working from home in 2021, an increase in cyberattacks exploiting consumer-grade home networking vulnerabilities is inevitable.

Such attacks will negatively affect businesses that have not yet adapted their network security posture to align with the new hybrid work scenarios. Data breaches involving insiders will increase due to continued remote work. It’s also likely that cyberattacks will increase at a greater pace for smaller businesses than for large organisations, who are likely to increase their uptake of cyber insurance in the belief that this will mitigate all risk.

Renewed focus on cybersecurity awareness training

Employee awareness of cyber risks will be in the spotlight in 2021, and organisations will likely enhance their cybersecurity awareness training efforts to strengthen their ‘human firewall’.

In Mimecast’s State of Email Security 2020 report, 99% of South African organisations offered security awareness training.

However, there are questions about the effectiveness of some training. In a recent global study by Mimecast, employees were asked about their use of work devices for personal activities during the pandemic. It found that half of South African respondents admitted to opening emails they considered suspicious.

Security teams are likely to launch live phishing simulations and other real-life, de-weaponised campaigns to stress-test employees’ ability to identify and avoid risky behaviour.

Reported breaches skyrocket due to POPIA

Starting in July, South Africans should also expect to see headlines proclaiming a massive increase in data breaches. These breaches are likely already happening but will suddenly be made public in line with the POPI Act’s breach notification obligations. It is also when we will possibly start seeing the first regulatory fines being issued due to significant data breaches.

Let's do Biz