IconAppraisers and Valuers
IconAssociations and Institutes
IconBBBEE Consulting and Verification Agencies
IconConsumer Protection
IconCorporate Governance
IconCredit Bureaus
IconDefensive Driver Training
IconEmergency Medical Rescue
IconForensic Investigation Services
IconInsurance Brokers - Alphabetical Listing
IconInsurance Brokers by Type of Product or Service Needed
IconInsurance Companies
IconInsurance Consultants
IconLightning Damage & Surge Protection Specialists
IconOnline Quotes and Cover
IconPremium Financing
IconPublic Loss Adjustors
IconRating Agencies
IconRegulatory Authorities
IconRisk Finance
IconRisk Management
IconRisk Surveyors
IconSalvage Operators
IconTelephone Quotes
IconVehicle Accident Management
IconVehicle and Household Risk Inspection Services
IconVehicle Tracking
IconWellness Programs
  Subscribe To »

Hacking South African companies takes less than one minute







By Mikko Miemela, CEO

When it comes to securing a business against cyber threats, the talk, money and focus seems to be on internal networks, systems and virtually everything inside the organization. Antivirus software, firewalls and intrusion and fraud detection are often discussed with executives who are responsible for looking after their businesses. But when I asked, ‘How many passwords have already been leaked?’ and, ‘Is someone targeting your organization? Is your information for sale?’ I was met with blank stares from the company executives. Indeed, the external world isn’t considered in many business agendas.

The basic principle of cyberspace is that if you don’t know what you have, you can’t secure it. When it comes to ICT assets and systems, most companies seem to understand what they have on their premises. But nobody knows what’s outside. During discussions, no single company was using only their internal systems; everyone was relying heavily on external vendors, supply chains and cloud providers. And the future brings even more interdependencies – almost everyone has a plan to cut their own assets.

While reducing the number of systems on one’s own premises makes defending them easier and cheaper, the role of the known unknown – the external world – grows exponentially. Probability for an external data breach, exposed credentials, sensitive information disclosure or an actual data breach grows, and for self-centric organizations, there are no direct ways to reduce these risks. When we can’t control everything, the question is: ‘What can we do?’

Exploring cyberspace is like walking the streets – and South Africans are very streetwise. You need to know who to trust and which route to take in order to stay safe. The next thing is to get cyber-wise: choose smart passwords, avoid online scams and pick reliable service providers. The good news is that cyber awareness training is cheap and effective compared to technology investments. The bad news is that anyone who isn’t trained will act against you unintentionally! That means time is money.

Another thing is to understand your organization’s current and past exposure. What has been leaked already? Are hacker groups targeting you? Where is leaked information coming from, and whose passwords have been compromised? This is a starting point, but it’s the most valuable security measure you can have when going asset light. Get your exposure assessed (and preferably monitored) at a pace you can handle.

Just to give a ballpark figure: The top 100 Johannesburg Stock Exchange companies have over 1,000 active usernames and passwords available – EACH. Those credentials provide instant hassle-free access to the organization without anybody asking or noticing. So my recommendation is to find what’s out there already; mitigate any findings; and train your staff so that you have your entire team working with you – not against you.

Mikko S. Niemelä is President and CEO of Singapore-based cyber intelligence agency Kinkayo, Chairman of cyberattack company Silverskin and author of Anatomy of a Cyberattack. #39 of the TOP 100 cybersecurity. influencers

This article was first published in the Camargue Weathervane

Source: Camargue Underwriting Managers (Pty) Ltd
« Back to previous page Print this page » |

Breaking News »

Pollution liability risk on the rise for SA businesses, directors and employees

Pollution liability is becoming an increasingly intricate issue in South Africa and businesses, as well as the relevant directors and employees in their personal capacity, are facing an increased risk of being ...
Read More »


Iemas members to receive R109 million in member benefits

              Johan Nel, Chief Executive Officer Iemas Financial Services (Co-operative) Ltd.               With ...
Read More »


China and Zambia: Friendship Turned Sour

By Coface, the international trade credit insurer Zambia’s export dependency on China doubled over the past decade, beginning in 1998, after China Nonferrous Metal Mining Group (CNMC), a Chinese state-owned ...
Read More »


The risk of owning an incorrectly numbered sectional title unit

By Junaid Nabbie, Senior Associate Norton Rose Fulbright South Afriva Inc. Prospective buyers of sectional title units should not only inspect the property for defects, but ensure they are buying the correct property ...
Read More »


More News »


Healthcare »


Investment »


Life »


Retirement »

Advertise Here

From The Glossary »


Quota Share Reinsurance:

An agreement whereby the ceding company is bound to cede and the reinsurer is bound to accept a fixed proportion of every risk written by the ceding company within a defined category of business. The reinsurer thus shares proportionally in all losses and receives the same proportion of all premiums.
More Definitions »

By using this website you agree to the Terms of Use.
Copyright © Stoker Risk & ICT (Pty) Ltd 2004 - 2017.
All Rights Reserved.





Contact IG


Media Pack


RSS Feeds