In Africa’s cyber attacks, tackling Advanced Persistent Threats is crucial


Latest data indicates that $62 billion was spent globally on IT security last year. Despite the heavy investments, companies and governments are continuing to face massive advanced persistent threats. In fact, close to 90% of organizations have active malware and more than half of them are not aware of any intrusions. Public authorities are the most vulnerable to cyber attacks as most African governments are unaware of the chronic dangers and sophisticated tactics used by advanced hackers. Surprisingly, a majority of government and corporate leaders are not even aware of methods employed by the hackers these days. There has been upsurge in cases where vital state and even military secrets obtained illegally by hackers have ended up being sold to other state spying agencies. This has also included crucial economic and commercial intelligence data of high value being shipped to business and state rivals. The young jobless techies and nerds in Africa are said to hack for fun but online crime gangs are after stealing accounts details, passwords and private data to indulge in illegal funds transfers and ATM withdrawals among other damaging activities.

Hackers, some who are as brave as lions, have no fear selling the information they steal to the highest offer. Most IT security practitioners are more concerned with data breach but they ignore advanced persistent threats. What African region has failed to realize is that data breaches happen through the use of advanced persistent threats. Cyber-threats in Africa, studies have shown that there are plenty of dangers posed by social media networks. In two cases reported in South Africa and Nigeria, attackers used information gleaned from Twitter and Facebook respectively to mine more about the organizations targeted. In the case of South Africa, the attacker used information from Twitter where he used information gathered to develop a phishing e-mail that lured employees of the company (I cannot name it for legal reasons) to open an attachment.

When a female staff opened her mails, the malicious application landed on her PC and spread to all other computers within the organization and according to an investigator privy to the case, it was able to figure out what are the valuable data available on the network.  The “vocational” IT Security experts have failed to appreciate that option of relying on antivirus as an all round solution for any organization's security problems is obsolete and inadequate. In the presence of advanced persistent threats, anti- virus solution is worthless. I come from the school of thought that believe cloud computing is more secure than the more vulnerable traditional IT security infrastructure where IT managers manage the challenge alone. Unless you are an amateur IT manager, it is important to work everyday with an assumption that your organization's network could be compromised anytime because it radically changes the whole security scenario mentality.

Comments

Post a Comment

Popular posts from this blog

Gaming with Smartphones

For a moment forget about the stereotype of gamers being baby faced hooded blokes in dark rooms. This is the age of the "thirty plus", like me who plays games on their mobile while standing in the supermarket queue or waiting for coffee in a restaurant. “ Contador Harrison love playing games on his phone because it's an easy way to fill in small pockets of time that crop up from my tight schedule. If nothing's going on with Twitter then I reach for a game while sipping coffee which unfortunately I am naturally addicted." Smartphones have become an essential gadget that allows busy individuals like me to keep pace with the present dynamic environment. Smart devices have become affordable and now almost everyone has a smartphone that fits their varied lifestyles. Having an iPhone or Android powered devices is now considered basic gadgets and few would argue that smart devices are one of the most revolutionary gadgets ever invented with their purpose ...
Read more

'Coalition of the willing' isolates Tanzania and Burundi

Rwanda, Uganda and Kenya tripartite partnership that has been branded as the ‘coalition of the willing’ will push for more intensive cooperation to ensure sufficient provision of financing for infrastructure development. During a regional meeting in Kigali, Rwanda on Monday, Presidents Paul Kagame of Rwanda, Uhuru Kenyatta of Kenya and Yoweri Museveni of Uganda agreed to launch of a single tourist at the next infrastructure summit which could take place in Juba, South Sudan early 2014. The three countries want to push for more financing mobilization from private public agreements and also by inviting investors to actively invest in proposed infrastructure projects in Kenya, Rwanda and Uganda. They are pushing ahead without Burundi and Tanzania in formulating infrastructure projects funding as soon as possible, launch joint tourist VISA and facilitate movement of people using national identity cards within their countries. They agreed that Ugandans will use their voter’...
Read more

Industrial automation requires skills rethink

After more than a decade and a half in the technology industry, I have not come across institutions that do not have a few staff allergic to change. In most industries, automation has been the most dreaded. Whether an employee likes it or not, clearly traditional jobs will eventually be wiped out, and even those jobs that fall disproportionately on communities that are built on industrial sectors like mining and agriculture. New jobs emerging in industrial technology are not likely to replace those lost as a result of automation. I was having a chat yesterday with an Agri-industry expert who was involved in a research that investigated the outcomes of autonomous and remote operation technologies in the agriculture industry in sub Saharan Africa. In their research, they found the automation of agricultural practices tasks in countries like South Africa, Kenya, Namibia, Zambia and Tanzania has provided safety and efficiency, but was also likely to result in the loss of...
Read more