The digital transformation of our lives and economies has led to great advances, but at the same time it has resulted in increased exposure to a range of threats and given rise to new vocabulary such as shadow IT, phishing, ransomware and botnets, writes TINUS JANSE VAN RENSBURG, Cisco Regional Manager of Security Africa region
The digital transformation of our lives and economies has led to great advances in communication and productivity, but it has also created a great dependency on Internet connectivity across industries and individuals. This has resulted in increased exposure to a range of threats and given rise to new vocabulary such as shadow IT, phishing, ransomware and botnets.
The Fourth Industrial Revolution has radically improved lives, but has also created a new set of challenges that come with the ubiquity of networks; starting with their protection. Technology is ingrained in every aspect of today’s economy with many core assets now digital in nature, and susceptible to attack. While conventional wars saw planes, ships and tanks controlled by pilots, sailors and soldiers, today’s agents of destruction include laptops, mobiles and an Internet connection. The virtual ‘theatre of war’ now includes elusive forces capable of violating companies, governments and individuals with an array of digital weapons that can be automated to amplify the impact. Today, a few strokes on a keyboard can destroy an individual’s reputation, affect stock prices, and even the fate of nations.
The scale of the challenge is sobering. Every day over 20 billion cyber-threats (almost three for every man, woman and child on the planet) are blocked by Cisco. Last year, the global incidents of distributed denial-of-service attacks (which inundate network servers with junk Web traffic), jumped by 172%. This is expected to more than double to 3.1 million attacks by 2021. What these statistics do not provide, however, is the increasing levels of sophistication used by online perpetrators and sophisticated syndicates that make stealing data, disrupting networks and extorting money their business.
Today’s Allied Forces
Fortunately, forces are aligning to protect citizens, companies and governments from elements that aim to undermine the so-called ‘free world’ of the 21st Century. The Allied Forces of today are members of the private and public sector who are coming together to fight a ‘silent war’ against an enemy that is often faceless and operating from a borderless territory. While wars have typically been based on gaining or protecting territories and resources, the cyber war of the present is about maintaining and protecting the digital circulatory system of the global economy, and in some cases, the integrity of political systems.
For example, earlier this year two technology giants – IBM and Cisco –announced an agreement to work together in a number of areas, including ‘threat intelligence’. Apart from integrating various security products and services, the two companies have agreed to share their expertise in order to better detect and mitigate threats, as well as creating integrated security tools offering automated threat responses with greater speed and agility. Such a coordinated response is necessary given that 65% of organisations are using up to 50 different security products, with many of these organisations migrating security infrastructure to public and private cloud providers.
Apart from software and hardware companies collaborating, we are also seeing new organisations and forums being created to share information such as the Internet Watch Foundation, and the Cyber Threat Alliance. The scourge of cyber-threats has caused cybersecurity experts from diverse organisations in the ICT industry to work together in good faith to improve the broader defense capabilities.
‘Art of War’
In these days of digital warfare and the potential for digital infiltrations to spread quickly, being responsive is paramount. Fortunately, with more organisations collaborating and new technologies being applied, (such as machine learning), response rates to digital threats have improved dramatically. For example, between November 2015 and May 2017, Cisco decreased its median time to detection from just over 39 hours to about 3.5 hours. Beyond detecting threats and responding, today’s Allied Forces are pre-emptively blocking online incursions. For example, on a daily basis, the global threat intelligence company Talos inspects over 600 billion email samples and collects in excess of one billion malware samples.
Given the scale of cyber threats, it is essential to automate the detection and handling of threats and to secure ‘peripherals’ such as mobile devices. Using Artificial Intelligence, one new countermeasure is a technology called Cognitive Threat Analytics (CTA). Developed by Cisco, CTA continuously learns from the massive amounts of data it analyses, making it possible to identify threats and distinguishing them from normal online traffic, thereby offering a ‘smart defense’ against malicious network behaviors at a scale and speed unmatched by humans. Another advancement that was introduced in February this year, is the first Secure Internet Gateway (SIG) in the cloud. Designed to address the inherent security risks in an increasingly mobile workforce, it protects employees – whether they are on or off the corporate network – providing a ‘safety net’ that covers 100% of mobile traffic, without the need to install hardware and or manually update software.
|The day-to-day activities of all countries in the modern economy are part of a hyper-connected, global system. As a result, all individuals, companies and countries are potential targets for organisations with nefarious intentions. Being ‘battle ready’ is critical. This entails education, training, equipment, technology and specialised services to protect against digital attacks. It also demands a coordinated and collaborative defence across industry, government and society as part of taking a proactive stance to safeguard digital communication systems.
Security is everyone’s concern and protecting ourselves can no longer be conducted in isolation. With this is mind, it is useful to ponder the timeless words of Sun Tzu – the 500 B.C. Chinese philosopher and military strategist and author of The Art of War:
“The art of war teaches us to rely not on the likelihood of the enemy’s not coming, but on our own readiness to receive him; not on the chance of his not attacking, but rather on the fact that we have made our position unassailable.”
Mobile is the new branch
Standard Bank has launched an account for mobile devices that gives back 500MB of data a month
Standard Bank has introducd a R4.95p/m bank account called MyMo that customers can open on their mobile devices, loaded with data and airtime offerings and other benefits such as virtual and Gold physical card.
MyMo account holders will also enjoy the convenience of a cheque account through a Visa and Mastercard gold card. Once the account is open, users can choose to either receive R50 in airtime or 500MB of data a month, if their card is swiped more than four times a month. A further megabyte of data is loaded on the account for every R20 spent.
“MyMo is an account for everyone, whether you just landed your first job or have been around the block. With no documentation required it only takes a few minutes to open the account,” says Funeka Montjane, Chief Executive for Personal and Business Banking, South Africa, at Standard Bank Group. “For just R4.95 a month customer will be able to enjoy free swipes and ATM withdrawals at only R6.50 for amounts under R 1 000.
“Mobile is the new branch. This account is about bringing the mobile branch into customers hands, it is about convenience and security while banking.”
She says mobile offers low cost transactional banking which integrates people and businesses into the new connected economy, making mobile the new branch ecosystem that will drive and connect Africa’s growth. Physical connections to the economy are rapidly changing to digital where banks have to move from being financial institutions to service organisations.
“In the past people congregated in communities and eventually cities to maximise the advantages of connectivity. Today a simple hand-held device has the potential to open infinite doors, transforming individuals’ access to opportunities, regardless of where they are, and like never before in history.
“Historically, a bank account represented access to economic citizenship. Today, having a simple device enabling digital access to a modern banking platform is a passport to global connectivity and vast human development potential.”
The bank says it is using technology, and mobile phones in particular, to deliver low-cost transactional channels accessible to all our customers. The evolution in mobile can be seen in transaction options like cash back at the retail checkout till rather than the ATM, free digital banking rather than using a branch, and the ability to transact using digital wallets, even without a bank account.
“Developing comprehensive connected ecosystems requires a mind-set change from Africa’s banks,” says Montjane. “Banks will evolve away from traditional financial service organisations, into service ecosystems enabling broad universal access to almost everything like enhanced purchasing experiences of vehicles and homes, online procurement of goods and services and lifestyle elements like rewards and travel.
“These connectivity drivers will also act to future-proof evolving connectivity ecosystem by allowing us to offer untold future services while deriving income from as yet unrealised revenue streams,.
From a customer perspective, the kind of ecosystems of knowledge, access and, ultimately, connectivity that banks will come to provide will radically transform the share of life that almost all individuals will be able to access.”
Two-thirds of SA staff hide social media from bosses
With 90% of people in employment going online several times a day, it can be hard for most workers to keep their private and work-life separate during the working day (and beyond). The recently published Global Privacy Report from Kaspersky Lab reveals that 64% of South African consumers choose to hide social media activity from their boss. This secretive stance at work also extends to their colleagues, with 60% of South Africans also preferring not to reveal online activities to their co-workers.
Globally, the average employee spends an astonishing 13 years and two months at work during their lifetime. Interestingly though, not all this time is directly related to solving work tasks or earning a promotion: almost two thirds (64%) of consumers admit visiting non-work-related websites every day from their desk.
Not surprisingly, 35% of South African employees are against their employer knowing which websites they visit. However, more interestingly, 60% of South African are even against their colleagues knowing about their online activities. This probably means that colleagues constitute an even greater threat to future perspectives of an office slouch or maybe the relationships with colleagues are more informal and therefore, more valuable.
On the contrary, social media activity appears to be a less private domain for many and therefore, more suitable for sharing with colleagues but not the boss. This is probably because workers fear harming the public image of a company or interest in decreased staff productivity motivates companies to monitor employees’ social networks and make career changing decisions based on that. Such policies have led to 64% of South Africans saying that they don’t want to reveal their social media activities to their boss and 53% even don’t want to disclose this information to their colleagues.
A further 29% are against showing the content of their messages and emails to their employer. In addition, 3% even said that their career was irrevocably damaged as a consequence of their personal information being leaked. Thus, people are worried about how to build a favourable internal reputation and how not to destroy existing workplace relationships.
“As going online is an integral part of our life nowadays, lines continue to blur between our digital existence at work and at home. And that’s neither good nor bad. That’s how we live in the digital age. Just keep remembering that as an employee you need to be increasingly cautious of what exactly you post on social media feeds or what websites you prefer using at work. One misconceived action on the internet could have an irrevocable long-term impact on even the most ambitious worker’s ability to climb the career ladder of their choice in the future,” comments Marina Titova, Head of Consumer Product Marketing at Kaspersky Lab.
To ensure workers don’t fall prey of the internet threats at a work, there are some core guidelines to adhere to in the digital age:
- Don’t post anything that could be considered defamatory, obscene, proprietary or libellous. If in doubt, don’t post.
- Be aware that system administrators may at least, in theory, be informed about your web browsing patterns.
- Don’t harass, threaten, discriminate or disparage against any colleague, partner, competitor or customer. Neither on social networks or in messages, emails, nor by any other means.
- Don’t post photographs of other employees, customers, vendors, suppliers or company products without prior written permission.
- Start using Kaspersky Password Manager to ensure your social media and other personal accounts are not at risk of unauthorised access by someone else in an office. Install a reliable security solution such as Kaspersky Security Cloud to protect your personal devices.