EXPERTS SOUTH AFRICA 5 things South Africa must do to beat cybercrime 5 months ago Szarlot Post Views: 163 Cyberattacks are on the rise globally, with seriously negative implications for countries’ strategic, national, economic and social well-being. A cyberattack can be defined as an unauthorised attempt – successful or not – to infiltrate a computer or computer system for malicious purposes. Reasons for such attacks vary from financial gain to espionage, gathering strategic and national information and intelligence about an adversary. Such an adversary can be a nation state, a corporate entity or a private individual. The authoritative international Cybercrime Magazine expects global cybercrime costs to grow by 15% a year over the next five years, reaching $10.5 trillion a year by 2025, reporting: This represents the greatest transfer of economic wealth in history, risks the incentives for innovation and investment, is exponentially larger than the damage inflicted from natural disasters in a year, and will be more profitable than the global trade of all major illegal drugs combined. A 2022 report by Surfshark, the Netherlands-based virtual private network (VPN) service company, lists the top 10 countries in the world in terms of cybercrime density. Cybercrime density is defined as the percentage of cyber victims per one million internet users. South Africa is number six on the list, with the UK, the US, Canada, Australia and Greece taking places one to five. The UK, therefore, has the highest cybercrime density. That means it has the most cybercrime. One reason for South Africa’s poor showing may lie in the fact that a 2020 Accenture report found the country’s internet users were inexperienced and less technically alert. In May, a data leak at Transunion, a credit management company, reportedly compromised the personal information of 54 million South Africans. President Cyril Ramaphosa was among the victims. In 2021 a successful cyberattack on Transnet, the transport parastatal, brought container terminals to a standstill, disrupting imports and exports. This had massive strategic and economic implications. Cybercriminals are increasingly moving from targeting enterprise systems to the end users – the employees who operate computers and have access to the enterprises’ corporate data and network systems. Poor cybersecurity awareness and training of end users is one reason cyberattacks succeed in South Africa. In both the Transunion and Transnet attacks, unauthorised access was gained via end users. Cyberattacks are expected to grow in sophistication as criminals exploit such technologies as artificial intelligence. I am a cybersecurity expert and academic who has watched the growing problem of cyber-attacks in South Africa and internationally over the last 30 years. In my experience, five key ingredients need to be in place in the cybersecurity ecosystem to fight cybercrime in South Africa: recognition of cybercrime as a governance issue skilled practitioners and advisors savvy citizens public-private partnership a dedicated “national director of cybersecurity”. The five key ingredients 1. Fighting cybercrimes must be a governance issue This is a core principle in all national and international good corporate governance practices. In private companies that role falls on the boards of directors and executive management. It’s part of the oversight and code of conduct of top management. For the government it means that the president and cabinet should be responsible for ensuring that the country is resilient against cyber-attacks. 2. Skilled cyber practitioners and advisors are vital There is a dire need for cybersecurity capacity globally. South Africa is no exception. This shortage is experienced both in government and in the private sector. South Africa needs a large number of cybersecurity practitioners and advisers to help users to identify and prevent cyberattacks. These should ideally be available in all government institutions, including every municipality, hospital and school. The skills shortage is being addressed by universities and private colleges, but this is but a drop in the ocean because the output is limited and takes several years to produce. The fact is that such cybersecurity practitioners do not necessarily all have to have university degrees. In the UK, for example, the government’s National Cybersecurity Centre has a programme called CyberFirst, directed towards schools. Such a programme could have significant benefits for South Africa, including providing jobs for talented young people who do not have the money or interest to pursue tertiary studies. 3. Citizens must be cybercrime savvy All computer end users must be empowered to be cybercrime fighters to make the country, companies and other institutions more resilient. Security is everyone’s job. Everyone from the entry-level to top management should know how to identify and report breaches so they can defend the enterprise. New, more effective approaches must be found to make end users more aware of cyber risks and integrate them better into the enterprise’s cyber defences. One example of such a new approach can be modelled on the idea of a human firewall, where every end user understands that he or she is part of the cyber defence of the country or company, and acts in that way. 4. Public-private partnership is imperative The government cannot fight cybercapture on its own. Most of the present cyber expertise lies in the private sector. The private sector is basically running a major part of South Africa’s critical information infrastructures – such as for banks, internet service providers and cellphone service companies. Public-private partnerships must be established as soon as possible to combat cybercrimes. This idea is already provided for in the original National Cybersecurity Policy Framework of 2013. But the political will from government to make it work seems missing and no such partnerships have really developed. 5. Have a dedicated ‘national cybersecurity director’ Cybersecurity experts and functionaries in the government and the private sector often operate in independent silos. Nobody has the required “helicopter view” and oversight of the status of cybercrime in the country. Not sharing scarce cybersecurity expertise between role players ends up in expensive duplication of expensive software systems and training, which could be more widely available. South Africa needs a national bureaucrat, or “national cybersecurity director” to play an oversight role. The office must act as a single point of contact for all cyber-related matters in the country. The incumbent must be technically skilled in cyber matters, and have the trust of both government and private sector role players. He or she must report directly to parliament – something like Chapter 9 institutions, which strengthen the country’s democracy – as provided under the constitution. The US, the UK and Rwanda have all created such a position or agency. Source: news24.com About Post Author Szarlot I am a fan of casino games especially roulette and blackjack. After that I analyze current events in the gambling industry. See author's posts SzarlotI am a fan of casino games especially roulette and blackjack. After that I analyze current events in the gambling industry. Facebook Twitter LinkedIn Email Print Tags: cyber attack, cyber-attacks, cybersecurity Continue Reading Previous Moja Group appoints Paris Anatolitis as new CEONext Why Vodacom mobile money users shun it More Stories ONLINE SOUTH AFRICA 2023 Northern Cape Online Championships 6 hours ago Szarlot EXPERTS SOUTH AFRICA Only 2 Months at The BiG Africa Summit 2023! 6 hours ago Iwo Bulski EXPERTS MALAWI How Will Malawi’s Economy Fare in 2023 6 hours ago Samuel EXPERTS SOUTH AFRICA South Africans spent big on groceries, entertainment and fuel in December 7 hours ago Szarlot BETTING SOUTH AFRICA Betfred SA denies it owes Joburg City Power over R3m in unpaid lights bill 1 day ago Szarlot EXPERTS WORLD NEWS What Will Be The Future of Sports Betting Around The World? 1 day ago Szarlot EXPERTS HOT NEWS TANZANIA Mobile Betting – How Popular is it in Africa? 1 day ago Szarlot EXPERTS RWANDA Adam Bradford launches centre to train youth in Rwanda 4 days ago Iwo Bulski EXPERTS KENYA BetEngines launches the first Sportsbook software solution tailor-made for the African market. 5 days ago Adeleye Awakan EXPERTS KENYA Ronald Karauri’s Inspiring Journey from Pilot to SportPesa Billionaire 5 days ago Szarlot EXPERTS KENYA Betting firms rush to comply with new tax regulations 6 days ago Samuel EXPERTS SOUTH AFRICA The Gambling Laws of South Africa 6 days ago Szarlot Leave a Reply Cancel replyYour email address will not be published. Required fields are marked *Comment * Name * Email * Website Save my name, email, and website in this browser for the next time I comment. Δ This site uses Akismet to reduce spam. Learn how your comment data is processed.