Cybercriminals have targeted South Africa with attacks and breaches for decades. Knowing that many companies have neglected their security, criminals employ ever-changing devious methods. Beyond the estimated R2.2 billion lost each year, these attacks damage individuals, infrastructure, and the economy, making South Africa the third-highest country in the world for cybercrime victims. While some breaches aim for financial gain, others have malicious and dangerous intent. Cybersecurity specialists recognise the need for a new approach and now use tools such as Managed Detection and Response (MDR) combined with 24/7 Endpoint Detection and Response (EDR). To thwart these threat actors, organisations must adapt as flexibly and fluidly as the attackers themselves.

The South African government is acutely aware of the vulnerability of its citizens and companies. An Interpol report of October 2021 highlighted a “critical absence of cybersecurity protocol, cyber-resilience as well as mitigation and prevention measures for individuals and businesses” in Africa. To address this urgent need, the Department of Telecommunications and Postal Services established the “CyberSecurity Hub.” The National CSIRT (Computer Security Incident Response Team) serves as a central resource for government stakeholders, the private sector, the general public, and civil society to monitor, identify, and counter cybersecurity threats. Specialists use this hub to access information and data, and to coordinate response activities. In addition, the South African government has enacted strict laws to combat cybercrime, bringing its framework closer to international standards.

However, the hub represents only a preliminary step in reshaping cybersecurity practices. Industry professionals continue to adopt innovative actions that surpass outdated methods. With most organisations lacking the staff to dedicate to cybersecurity and many breaches remaining undetected for up to nine months, professionals now deploy advanced tools that prioritise detection alongside protection and prevention.

Additional actions include in-depth analysis of how breaches occur and recommendations for closing vulnerability loopholes. Resources such as the CyberSecurity Hub provide insight into attackers’ methods, levels of sophistication, and sometimes their identities, enabling swift and effective responses. By combining technology with human expertise, specialists conduct threat hunting, monitoring, and incident response.

Combating cybercriminals requires cybersecurity professionals to remain as adaptive as their adversaries. The outdated practice of reviewing and approving networks once every three years no longer suffices. Today, organisations need consistent, continuous monitoring. With advanced technologies, cybersecurity specialists can detect breaches early and take decisive action to prevent victimisation.

“Using the latest tools, DaVinci Cybersecurity coordinates with our clients to bring the highest quality security protocols. Our MDR services help to ensure that an organisation is monitored, any breach discovered, and response action is taken. This may require looking in places that appear different or are suspicious. Allow us to assist you in planning your cyber security strategy.”

Sharon Knowles, CEO DaVinci Cybersecurity

Source:

www.dailymaverick.co.za/article/2021-11-06-cyberattacks-south-africa-youve-been-hacked/