SA hit by longest running cyber attack campaign in July - report

In July this year South Africa experienced the longest running cyber-attack campaign among all the regions monitored by email and data security company Mimecast for its quarterly Threat Intelligence Report.

Four major cyber-attack campaigns were detected in South Africa between July and September. The systems of several financial services companies suffered the brunt of the impact of these cyber-attacks.

Mimecast detected more than 116 000 attacks in SA over an eight-day period in July by an unknown "threat actor or advanced criminal group". Various malware types were used in the process, including a range of generic Trojan viruses.

Mimecast's Threat Intelligence Report: Risk and Resilience Insights, released on Wednesday, provides a technical analysis of the nature of cyberattack campaigns on businesses in several key markets, including the US, UK, Australia, Germany, and South Africa.

The report includes an analysis of 207 billion emails processed, 99 billion of which were rejected. The goal of the report is to keep organisations informed on the threats that are targeting their industries.

Impersonation attacks are on the rise, the research found, accounting for 26% of total detections. These kinds of attacks now include so-called "voice phishing" (vishing). This is an advanced attack using social engineering to gain access to personal and financial information via the victim's telephone system.

Top sectors targeted globally from July to September were transportation, storage and delivery, banking and legal.

According to Josh Douglas, vice president of threat intelligence at Mimecast, the latest research found that the majority of threats were simple, sheer volume based. This is because they are easy to launch and get employees to click on malicious links.

Multinational cybersecurity company Kaspersky Lab said on Wednesday its research on Advanced Persistent Threats (APTs) points to a change to be expected in coming months.

'The bar has been raised'

The overall trend indicates that threats will grow in sophistication and become more targeted.

According to Kaspersky, after a number of personal data leaks that happened in the past years, the number of personal details available made it easier for attackers to perform targeted attacks, based on victims leaked info.

"The bar has been raised, and in 2020 the threat actors will dive deeper, hunting for more sensitive leaks, such as biometric data," states Kaspersky.

Key technologies, which could lure victims of personal data abuse into traps, include publicly discussed video and audio "deep fakes".

Other targeted threat predictions for 2020 include "false flag" attacks reaching a new level with attackers seeking to lay the blame on someone else, and ransomware shifts toward targeted threats.

Instead of making files unrecoverable, threat actors could threaten to publish data they stole from a company.

ZAR/USD
17.37
(+0.69)
ZAR/GBP
22.67
(+0.74)
ZAR/EUR
20.45
(+0.44)
ZAR/AUD
12.39
(+0.89)
ZAR/JPY
0.16
(+1.05)
Gold
1933.20
(+1.45)
Silver
25.77
(+3.80)
Platinum
943.00
(+2.44)
Brent Crude
44.46
(-1.09)
Palladium
2140.00
(+2.32)
All Share
57402.93
(+0.41)
Top 40
53058.76
(+0.43)
Financial 15
10225.10
(+0.09)
Industrial 25
76376.60
(+1.13)
Resource 10
58454.32
(-0.38)
All JSE data delayed by at least 15 minutes morningstar logo
Company Snapshot
Voting Booth
Do you think it was a good idea for the government to approach the IMF for a $4.3 billion loan to fight Covid-19?
Please select an option Oops! Something went wrong, please try again later.
Results
Yes. We need the money.
11% - 966 votes
It depends on how the funds are used.
74% - 6418 votes
No. We should have gotten the loan elsewhere.
15% - 1325 votes
Vote