Wolfpack Information Risk

Newsletter

The-Wolf-Howl

The Wolf Howl January 2024 Edition – Here’s to a Cyber-Safe 2024

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations. Mission: We are passionate defenders of communities, companies, and countries against cyber threats. Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent. Greetings Cyberwolves Welcome back to a new year filled with opportunities and the promise of a secure digital future! As we step into 2024, we at Wolfpack extend our warmest greetings and trust that the holiday season has recharged your spirits. May the new year be filled with collective experiences, lessons learnt, and achievements made in the exciting world of cybersecurity.  The cyber threat landscape continues to evolve, and safeguarding your digital assets is not just a necessity but a strategic imperative in 2024. At Wolfpack, we understand that the security of your data is the bedrock of your success. As cyber adversaries become more sophisticated, our commitment to innovation and excellence remains unwavering. We invite you to explore the latest advancements, industry trends, and proactive strategies to fortify your defences against potential cyber threats.  Our seasoned experts have curated insights and best practices to empower you in navigating the dynamic and often challenging cybersecurity world that directly impacts our country, companies, and communities.  Let’s continue to work together with passion and dedication. We look forward to navigating the cyber landscape together and to a collaborative journey towards a digitally resilient 2024. Yours Securely #protectioninthepack Research Thank you for supporting the 2023 SA Information Security Thermometer Report and participating in our webinars.  You can now watch the entire series HERE.  As a token of appreciation, you have been granted access to the complete 2023 SA Information Security Thermometer report, available for download HERE. ADVISORY AND CYBERSECURITY The supermassive leak contains data from numerous previous breaches, comprising of an astounding 12 terabytes of information, spanning over a mind-boggling 26 billion records. The leak contains LinkedIn, Twitter, Weibo, Tencent, and other platforms’ user data and is almost certainly the largest ever discovered. There are data leaks, and then there is this. Deepfake pornography has risen to epidemic proportions, with more celebrities and regular folk featuring in non-consensual deepfake pornography.  On Wednesday, 24 January, sexually explicit AI-generated images of artist Taylor Swift flooded X. Taylor Swift’s image, shared by a user on X, was viewed a staggering 47 million times before the user was suspended by the platform, according to The New York Times.  The Adventures of CISO Ed & Co attempts to highlight the everyday frustrations, heroism, and insights of CISOs and infosec teams while bringing some fun to the serious business of cybersecurity. We hope CISO Ed & Co. brings a grin as you go about your day. Compliments of Balbix. TRAINING, AWARENESS AND RESOURCING WHAT IS REAL AND WHAT IS FAKE?  Watch Craig Rosewarne on ETV’s Devi show to hear about how celebrities fall victim to deep fakes and how AI is used to create these sophisticated scams.  Cyberattacks are increasing, and exploiting human vulnerabilities will always be easier than bypassing technology controls. No organisation is fully secure from cyber threats if its employees are not regularly informed on the latest cybersecurity threats. Wolfpack can help #EndCyberRIsk. TRAINING, AWARENESS AND RESOURCING A look back at the most noteworthy, high-profile vulnerabilities and what makes them so dangerous.  The need for a renewed focus on cybersecurity fundamentals is made clear in Arctic Wolf’s annual recap highlighting the most noteworthy, high-profile vulnerabilities. Discover how and why threat actors continue to successfully leverage unpatched, ignored, or otherwise forgotten vulnerabilities to wreak havoc on environments — and how a reinforced foundation can amplify your resilience against them.  Access the intelligence and insights developed by Arctic Wolf Labs over the past year as we ingested trillions of weekly observations within thousands of unique environments. As one of the largest security operations centres in the world, our analysis of 2023 threats will help you cut through the noise, see past the headlines, and recenter your focus on the fundamentals that help protect your organisation 24/7. OUR COMMUNITY Wolfpack wishes to bridge the gap between cyber investigators and victims of cybercrime and provide a community service to assist victims of cybercrime: Each case investigated generates actionable intelligence and statistics that will make a difference in the fight against cybercrime in SA.  If you have been a victim of cybercrime, you may submit your scams, information and cases for investigation to osint@wolfpackrisk.com Please share this newsletter if you have benefited from the content. We look forward to hearing from you.

Wolfpack

The Wolf Howl December Edition – Happy Holidays!

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations. Mission: We are passionate defenders of communities, companies, and countries against cyber threats. Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent. Dear friends and colleagues, As 2023 draws to a close it is important to reflect on the blockbuster year we got through. A number of the high-profile news events that stood out for me: As a company, we are committed to the improvement of cyber collaboration and safety. We know we would be nothing without our community and would like to thank you for your support and dedication in the fight against cybercrime in 2023. Stay safe and we look forward to a number of important initiatives we have planned for 2024. Enjoy your well-deserved break with your loved ones. Yours SecurelyCraig Rosewarne Please share this newsletter if you have benefited from the content. We look forward to hearing from you.

cyber-safety

The Wolf Howl November 2023 Edition – Guarding Against Black Friday Scams: Essential Tips for a Secure Shopping Season / Incident Management Webinar

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations. Mission: We are passionate defenders of communities, companies, and countries against cyber threats. Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent. Greetings Cyberwolves As the excitement of the holiday season draws near, so does the Black Friday shopping frenzy when shopping deals are plentiful. Amidst the rush for bargains, cybercriminals seize the opportunity to prey on unsuspecting shoppers through elaborate scams and fraudulent schemes. At Wolfpack, we believe that staying informed and vigilant is key to enjoying a secure shopping experience during these bustling few months. Black Friday is a magnet for cyber scams, ranging from phishing emails and fake websites to counterfeit products and malicious software. Our mission is to provide cutting-edge cybersecurity solutions and empower you with knowledge that safeguards your online presence. In this newsletter, we aim to equip you with essential tips to fortify your defences and navigate the Black Friday shopping spree and upcoming Christmas shopping safely: Assess and Evaluate Websites: Stick to reputable and well-known online retailers. Verify website URLs for authenticity, check for HTTPS encryption, and look out for misspellings or suspicious domains. Beware of Phishing: Exercise caution with unsolicited emails, messages, or pop-ups offering unbelievable deals. Avoid clicking on suspicious links or providing personal information.  Secure Payments: Opt for secure payment methods. Avoid using public Wi-Fi for transactions, and consider using payment platforms that offer buyer protection. Update Security Software: Ensure your devices have the latest security updates and antivirus software installed to prevent malware attacks.  Stay Informed: Keep abreast of the latest scams and cyber threats. Follow reputable cybersecurity sources for updates and tips on staying safe online.  With these tips, you can confidently navigate the Black Friday and upcoming Christmas shopping landscape, minimising risks and maximising your joy in finding great deals. Stay tuned for more tips and insights from Wolfpack to make this silly season rewarding and secure. Yours Securely #protectioninthepack Research We would like to invite you to register for the Incident Management Webinar on the 7th of December 2023 from 09:00 to 10:00.  Register here!  The final webinar in the series will focus on Incident Management, cybercrime incident trends, cybercrime attempts and the impact of cybercrime in South Africa.  Experts from Synack will join our host, Craig Rosewarne, as they deep dive into Incident Management and discuss – Enabling a Resilient Security Posture with Strategic Security Testing! By registering for this final webinar in the 2023 series, you will be granted access to the full 2023 SA Information Security Thermometer report.  Once you sign into the platform go to the report section. ADVISORY AND CYBERSECURITY The pending Joint Standard on Cybersecurity and Cyber Resilience Requirements released by the Financial Sector Conduct Authority (FSCA) and the South African Reserve Bank (SARB) / Prudential Authority requires compliance by December 2024. Some customers need assistance to comply with these requirements, as using manual systems and Excel templates is time-consuming and diverts cybersecurity staff from other duties. This is a new requirement, in addition to other auditing and compliance requirements increasing staff workloads. To ensure that their institutions comply with the Cybersecurity and Cyber Resilience Requirements Joint Standard, governing bodies must act in accordance with their risk appetite, nature, size, and complexity: Security and Risk Managers have the following challenges: Wolfpack has assessed the standard and created a new service offering to help customers fully address the Joint Standard requirements in time. Our solution comprises a platform and consulting services, including best-of-breed tooling and remediation assistance. Wolfpack is well-positioned to assist as we have proven Industry experience in the banking and financial services sectors. We have extensive breadth and depth of cybersecurity expertise experience for the cyber risk management domain: GRC: ISO27 x Assessment & Implementation Experience, Cyber Risk Assessments (ISO 27005 & custom frameworks). Technical Cyber Defence: NIST CSF, CIS v8 Assessments, Threat Modelling, Incident Readiness Reviews, Incident Response Support. Cloud Security Architecture and Operations: Cloud Security Reviews, Cloud Incident Response. Vulnerability Management: Continuous Vulnerability Management, Vulnerability Prioritisation Tooling and Process Design. Cyber Risk Quantification. Incident Response Competencies. The pending Joint Standard on Cybersecurity and Cyber Resilience Requirements released by FSCA and SARB (Prudential Authority) seeks to achieve the following: The Joint Standard has the following features: The analysis will focus on the core disciplines, business context, technology context, governance, risk, and compliance. The Joint Standard applies to the following types of Financial Institutions:  The Joint Standard has the following objectives: Governance: Explicit responsibility assignment for cyber risk governance/oversight and ‘separation of concerns’ with operational management teams. Cybersecurity Strategy and Framework: Formally defined and approved by the governing body and with requirements to facilitate tracking and reporting cyber risk metrics. Cybersecurity and Resilience Fundamentals: Core controls covering, IAM, Data Security, AppSec and other control domains. Cybersecurity Hygiene: More ‘prescriptive’ guidance for some core controls. Contact us to discuss the details of our approach, costing model and important features of our service to assist with compliance to the Joint Standard. Please email info@wolfpackrisk.com for further information. Cape Talk’s Lester Kiewit examines how WhatsApp accounts are being hijacked for ransom. Wolfpack’s Leon Hannibal shares his  tips and insights. Two of the country’s largest consumer credit reporting agencies, TransUnion and Experian, may have been hit by a fresh data hack, potentially exposing South Africans’ financial and personal data. The Industrial and Commercial Bank of China’s (ICBC) U.S. arm was hit by a ransomware attack that disrupted trades in the U.S. Treasury market on Thursday, the latest in a string of victims ransom-demanding hackers have claimed this year. The Adventures of CISO Ed & Co attempts to highlight the everyday frustrations, heroism, and insights of CISOs and infosec teams while bringing some fun to the serious business of cybersecurity. We hope CISO Ed & Co. brings a grin as you  go about your day. Compliments of Balbix TRAINING, AWARENESS AND RESOURCING Let us help you understand online store scams #protectioninthepack #onlinestorescams #blackfriday OUR PARTNERS The cyber

The Wolf Howl October 2023 Edition – October is Cybersecurity Awareness Month (CSAM) / Information Security Programme Management Webinar

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations. Mission: We are passionate defenders of communities, companies, and countries against cyber threats. Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent. Greetings Cyberwolves Trust this newsletter finds you well. October has been a momentous month for the African continent. South Africans celebrated the riveting 12-11 Rugby victory over New Zealand. The Boks successfully defended their World Cup trophy and solidified their status as a global rugby giant. They have left an incredible mark on the hearts of our nation. In support of Cybersecurity Awareness Month (CSAM), Wolfpack has curated FREE content for companies and communities to elevate their security posture. Wolfpack is committed to the improvement of cyber collaboration and safety.  Thank you for entrusting us with your cybersecurity needs. Yours Securely #protectioninthepack Research We would like to invite you to register for the Managed Security Services Webinar on the 16th of November 2023, from 09:00-10:00.  This webinar will focus on the 9th Chapter of the SA Information Security Thermometer Research results.  We will discuss Managed Services including  which IS processes are outsourced, considering outsourcing, co-sourced or managed in-house. Our host Craig Rosewarne will be joined by experts from Datacentrix as they as they deep dive into the world of Managed Security Services. Sign up for the November and upcoming December webinars to receive a free copy of the 2023 SA Information Security Thermometer Research report.  Register here ADVISORY AND CYBERSECURITY Wolfpack Information Risk has, through its subsidiary, Alert Africa, launchedThe Cybercrime Operational Behaviour Response Alliance (COBRA) COBRA wishes to bridge the gap between cyber investigators and victims of cybercrime: Cyber Investigators Victims of cybercrime Value Proposition Submit your scams, information and cases for investigation to osint@wolfpackrisk.com How to set up your phone’s defences  It’s always satisfying to see scammers failing dozens of times, trying to reach you but constantly getting their calls blocked. However, many people still haven’t enabled the filtering feature on their phones. Leading global aerospace, commercial jetliner manufacturer, and US military and defence contractor ‘The Boeing Company’ is being claimed by the LockBit ransomware gang.  The Adventures of CISO Ed & Co attempts to highlight the everyday frustrations, heroism, and insights of CISOs and infosec teams while bringing some fun to the serious business of cybersecurity. We hope CISO Ed & Co. brings a grin as you  go about your day. Compliments of Balbix TRAINING, AWARENESS AND RESOURCING The below elements are designed to raise cyber awareness, enhance employees understanding of the latest threats, and tips to keep them safe and not to be fooled by any malicious attempts: The Virtual Employee Cyber Wellness Webinar aims at protecting individuals and their families. This workshop shared real life examples on how  people have been: Scammed out of their money, Had their identities cloned, Had their private e-mail hacked and impersonated, Bought things online from none existent companies, Held to ransom, And more! If you have missed this session please watch it here.  Big 5 Awareness Posters (Passwords, Malware, Software Updates and Scams) encourage a robust culture of cybersecurity within an organisation.  Empowered employees will stay ahead of the curve and will help to fortify defences, and safeguard their organisations valuable data. We look forward to your active participation in making CSAM impactful and educational for all your colleagues and employees. Whether you’re a cybersecurity enthusiast, a seasoned professional, or a business owner concerned about your online safety, our content caters to all levels of expertise.  October is Cybersecurity Awareness Month: Free Awareness Posters protectioninthepack #CSAM #big5 #applicationsafety #passwordsafety #softwaresafety #malwaresafety #scamsafety OUR PARTNERS OUR COMMUNITY Christmas is on it’s way… join Africa Food for Thought in spreading hope and joy!  Sponsor our Christmas party and know you are helping children who need a little extra joy this year. They are looking for sponsors for jumping castles, snack stations, photo printing, transport to the party and more. Please share this newsletter if you have benefited from the content. We look forward to hearing from you.

The Wolf Howl September 2023 Edition – Leaving a Cyber Savvy Heritage / Information Security Programme Management Webinar

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations. Mission: We are passionate defenders of communities, companies, and countries against cyber threats. Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent. Greetings Cyberwolves South Africans recently enjoyed their rich cultural tapestry and diverse history onHeritage Day. Just as we cherish and pass down the stories, languages, and customs that define our cultural identity, we must also protect the digital assets that underpin our modern lives and honour the importance of preserving our tangible traditions and our intangible digital heritage. Our lives are increasingly intertwined with technology and connectivity, and staying one step ahead of cyber threats has never been more critical. Cybersecurity is an ever-evolving battleground, and leaving a cyber-savvy heritage is the legacy we must leave for future generations.  At Wolfpack, we will continue to explore the intersection of cybersecurity and the values that define us as a nation, from the importance of privacy in the digital age to the role of technology in preserving cultural heritage. We are dedicated to empowering you with the tools and knowledge needed to navigate the complex world of cybersecurity.  We stand by our mission to safeguard your digital legacy. Our cybersecurity experts are here to guide you through the latest security solutions, best practices, and personalised strategies tailored to your unique needs. We invite you to join us in taking proactive steps to fortify your cybersecurity measures. After all, the strength of our digital heritage is a testament to our commitment to a secure and connected future.  With Heritage Day just behind us, let us extend that spirit of unity to our digital realm and celebrate our commitment to securing our digital heritage for future generations. Together, we can build a safer, more resilient digital future.  Thank you for entrusting Wolfpack with your cybersecurity needs. We look forward to embarking on this journey to safeguard our digital legacies and fortify your digital heritage.  Yours Securely #protectioninthepack Research We would like to invite you to register for the Information Security Programme Management Webinar, on the 19th of October 2023, from 09:00-10:00.  Register here. This webinar will focus on the results of the 8th Chapter of the SA Information Security Thermometer Research. We will discuss Information Security Programme Management including the main challenges hindering running an effective IS programme.  Our host, Craig Rosewarne, will be joined by experts from Veeam as they explore this topic! ADVISORY AND CYBERSECURITY The alleged breach by hacking group SNATCH raises deep concerns about the current state of the SANDF’s network security, and possible compromises of ongoing operations on the continent. The incidence of spyware attacks has shown a significant surge of over 20% within South Africa concerning 2023. The majority of these reported attacks have been concentrated on governmental websites and systems, thereby potentially engendering substantial instability to the national security framework of South Africa. The Kruger National Park (KNP) has reported that implementing technology has significantly reduced the frequency of rhino poaching incidents within the park.  As the world marked World Rhino Day last week Friday, statistics have provided encouraging signs. The Adventures of CISO Ed & Co attempts to highlight the everyday frustrations, heroism, and insights of CISOs and infosec teams while bringing some fun to the serious business of cybersecurity. We hope CISO Ed & Co. brings a grin as you  go about your day. Compliments of Balbix TRAINING, AWARENESS AND RESOURCING Here are a few tips to help you protect against malware.  #protectioninthepack #malware #springintoaction OUR PARTNERS OUR COMMUNITY Every year, AFFT’s December deliveries are extra special. They contain presents, extra food to get the family through the school holidays, and special treats. You can bless a family by buying a present for a child – or contributing special treats to our boxes. Please share this newsletter if you have benefited from the content. We look forward to hearing from you.

July-Wolf-Howl

The Wolf Howl July 2023 Edition – BEC Common Sense can be your best defence / Training and Awareness Webinar

The Cybersecurity, Privacy and Resilience (CPR) Management book is packed with sound practical advice and is an easy-to-read, five-step process that the entire leadership team can follow. Employees can delve into this pragmatic, non-technical cybersecurity book that offers expert insights to fortify their defence against cyber-attacks and help educate the organisation on the risks and protective strategies needed. 

Scroll to Top