City of Ekurhuleni missing R1.6 billion after hacking spree
The City of Ekurhuleni said it suffered a "digital state of emergency" where R1.6 billion has yet to be recovered after hackers struck the municipality in a long-term cyberattack.
A delegation from the city told Parliament on Thursday...
FlySafair user data leak during anticipated R12 ticket sale
Popular low-cost South African airline FlySafair leaked the private information of users participating in its highly anticipated R12-a-ticket birthday sale on Wednesday.
MyBroadband was informed that the sale site’s bulletin chat API...
Consumer Goods Council of South Africa denies data breach
Ransomware gang Stormous has claimed that it breached GS1 South Africa, also known as the Consumer Goods Council of South Africa (CGCSA). However, the company said the claim was false.
Stormous said it stole a large amount of sensitive...
AI takes one hour to find severe security flaw in the OS that powers most Internet servers
Xint Code, an “AI hacker” from security firm Theori, helped uncover a high-severity Linux kernel vulnerability that could have allowed attackers to gain a root shell.
The flaw, named Copy Fail and...
Insider threats almost always a factor in company breaches in South Africa
Insider threats were almost always a factor in breaches at major companies in South Africa, as disgruntled employees handed over critical system keys to unknown threat actors.
This is according to Thalia Pillay, CEO of...
ChatGPT security flaw could have allowed hackers gain access to users' Gmail data
OpenAI patched a ChatGPT security flaw that could have allowed hackers to extract Gmail data from its users, according to researchers at cyber firm Radware.
The issue was found in ChatGPT’s Deep Research agent, a...
Former WhatsApp employee accuses company of serious cybersecurity missteps
A former employee at Meta Platforms Inc.’s WhatsApp filed a federal lawsuit Monday alleging he repeatedly raised cybersecurity concerns about the messaging app with his superiors but was ignored and retaliated against...
NSFAS could be hacked at any moment
National Student Financial Aid Scheme (NSFAS) board chair Karen Stander has admitted that the entity's ageing ICT systems are vulnerable and could expose private student information if infiltrated.
In a statement, Stander said the organisation will assess...
Warning about using personal devices for business
Next time you’re working in a coffee shop or similar public space, take a moment to look around at your “co-workers” for the day, busy, like you are, with laptops, cellphones and tablets.
How many of those devices belong to the organisations...
MultiChoice's little-known cybersecurity jewel
Irdeto, wholly owned by MultiChoice, is a world leader in digital platform cybersecurity, servicing customers around the globe.
Most people think of MultiChoice as the company behind DStv and Showmax. However, it owns many other businesses...
The big human problem in cybersecurity
Despite huge advances in cyber security, one weakness continues to overshadow all others: human error.
Research has consistently shown human error is responsible for an overwhelming majority of successful cyber attacks. A recent report puts the figure at...
Hi Guys
I was recently involved with launching a credit card tokenization API, aimed at simplifying PCI compliance for any business. We provide a zero-knowledge, vendor neutral, PCI DSS level 1 compliant environment to store sensitive PII and credit card data - reducing PCI compliance scope to...
CIPC records breached
The Companies and Intellectual Property Commission (CIPC) has revealed it suffered a security breach leading to the compromise of its clients' and employees' personal information.
The CIPC, which is part of the Department of Trade, Industry, and Competition, put a notice...
Firewall change killed Saps network for hours
The State Information Technology Agency (Sita) has confirmed an outage that took down internal and public-facing networks of the South African Police Service (Saps) on Tuesday and Wednesday.
Among its impacts, the issue resulted in the Saps website...
Government training authority fires two senior IT gurus for spying and deleting CEO's email account
City Press reports the Construction Education and Training Authority (CETA) has fired its two most senior IT specialists after they allegedly spied on the organisation's board and deleted its...
https://krebsonsecurity.com/2023/04/3cx-breach-was-a-double-supply-chain-compromise/
We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX. The lengthy, complex intrusion has all the makings of a cyberpunk spy novel: North Korean...
Big jump in ransomware attacks on industrial companies
Ransomware attacks against industrial organisations increased by 87% in 2022 from the year before, with most malicious software targeting the manufacturing sector, according to findings published Tuesday.
Hackers last year targeted mining...
Hi there,
as it often happen, slowly slowly I ended up with 48 clients on my network and I realised it is time to review and manage properly the infrastructure.
I am looking for advice/support on what to do to make it more secure.
I have a 250/125 WAN connection
My LAN is a Gigabit
I use a VPN...
TikTok reportedly breached
TikTok, the short-video sensation that’s among the world’s most downloaded apps, is coming under increased scrutiny about its data security as it guards the personal information of over a billion users.
On Monday, several cybersecurity analysts tweeted about the...