Wolfpack Information Risk

The Wolf Howl April 2024 Edition – Don’t let April Fool’s Day get the better of you!

Wolfpack Information Risk provides specialist information and cyber threat consulting, training, awareness and incident support services to African governments and organisations.

Mission: We are passionate defenders of communities, companies, and countries against cyber threats.

Vision: Wolfpack will be the catalyst that drives the greatest positive cybersecurity impact on the African continent.

Greetings Cyberwolves

Welcome to the latest edition of the “The Wolf Howl” newsletter, where we bring you insights and updates from the ever-evolving world of cybersecurity. Whether you are new to the field or an experienced specialist, our mission is to provide you with accessible and engaging content that not only informs but also empowers companies to strengthen their cybersecurity practices.

Many of us have been victims of a friendly April Fools prank at some stage. However, cybersecurity is no Joke. It is not something you buy but rather something you live by. Avoid nasty April Fool’s surprises by cultivating staff awareness training and creating a culture of cybersecurity within your organisation.

This month, South Africans celebrated Freedom Day. In our pursuit of cybersecurity excellence, we are guided by a principle that resonates deeply within the cybersecurity community and our Rainbow Nation – Freedom. This concept reminds us that true security comes from robust technological defences and empowering individuals to speak freely and share knowledge without fear. In an age where information is both a weapon and a shield, fostering an environment of open communication is crucial.

Throughout this edition, we will explore actionable strategies and practical advice to enhance your privacy and resilience measures. Expect to find engaging articles containing real-world examples that bring these concepts to life.

We invite you to Reflect on the “Freedom Day” message as you navigate through the content and consider how informed decisions can enhance your professional skills and contribute to a safer digital world for our country, company, and community.

It takes many years to build your reputation, yet a few clicks to destroy it. Use this newsletter as a stepping stone towards mastering the art of cybersecurity.

Stay secure and informed, and remember, your journey towards better cybersecurity practices is one we take together. Let us continue to learn, share, and grow as a community dedicated to making the digital space safer for everyone.

Yours Securely

Thank you to all who joined the “From the Boardroom to the War Room” webinar.

Those who missed it or wish to revisit the discussion can access the webinar on-demand by clicking HERE.

The next webinar, Ensuring Cyber Safety, will be held on the 24th of May at 09:00 am.

Wolfpack has established an investigative team to assist victims of cybercrime in South Africa who otherwise would not have access to support. In partnership with Impact Amplifier and Google, Wolfpack is building an online platform called COBRA (Cybercrime Operational Behaviour and Response Alliance).

Come and hear about how this innovative COBRA platform is starting to bridge the gap between cyber investigators and victims of cybercrime and how you can be a part of this exciting initiative that is enabling:

•  Incident reporting.

•  Case tracking via the service desk.

•  Report on insights, tactics, and tools used by the criminals and turn this into useful, relevant awareness material for countries, companies, and communities.

•  Safer internet across Africa.

•  Generate useful country-specific cybercrime statistics.

Date: 24 May 2024

Time: 09:00 – 10:00 REGISTER HERE!

Calling on women working in cybersecurity to help by completing the survey.

Women represent only 25% of the cybersecurity workforce globally, and in Africa, only 9%. Researchers at Unisa are conducting a study to identify the barriers women face and the interventions required to encourage and support women in cybersecurity.

Submission Deadline: 20 May 2024

Calling on cyber and information security professionals to aid Unisa in identifying factors that can encourage creativity and innovation in cyber and information security teams. 

Creativity and innovation are vital to combating cybercrime and protecting information and related systems of organisations. Researchers at Unisa are conducting a study to measure the influence of creativity and innovation on cyber and information security to help organisations identify security solutions and combat cyber-attacks more effectively. 

Submission Deadline: 20 May 2024

Warning: This story contains details of violence, including sexual violence, which some readers may find disturbing. The name of one of the participants – Ravi – has been changed to protect his identity. 

Ravi travelled to Thailand, dreaming of a better life for himself and his new wife. Instead, the 24-year-old Sri Lankan found himself trapped and tortured in the Myanmar jungle for refusing to partake in so-called romance scams.

Foreign nation-state cyber adversaries are tenacious. Their attacks are evolving to get around the industry’s most sophisticated defences. Last year’s focus was the exploitation of routers, and this year’s theme has been compromised edge protection devices.  MITRE, a company that strives to maintain the highest cybersecurity possible, is not immune.

The Adventures of CISO Ed & Co attempts to highlight the everyday frustrations, heroism, and insights of CISOs and infosec teams while bringing some fun to the serious business of cybersecurity. We hope CISO Ed & Co. brings a grin as you  go about your day. Compliments of Balbix

28 May 2024 Cape Town International Convention Centre

Track three: Cyber security roundtable discussions @14:00 Session one:


Cyber security roundtable discussion overview:

  • Strategies for increasing your cyber resilience
  • Cyber security leadership: what does it take to be an effective cyber security leader?
  • The evolution of Zero Trust in 2024
  • Reimagining your approach to cyber risk management
  • Implementing an effective incident management and response strategy

Panellists: 

Sandika Daya, Senior Manager: IT governance, risk and compliance, Multichoice

Stephen Osler, Co-Founder and Business Development Director, NClose

Craig Rosewarne, managing director, Wolfpack Information Risk

Bernard Chadenga, vCISO, Founder and CEO, The Cimplicity Institute

@ 16:15 Session Two:

Panellists:

Sandika Daya, senior manager: IT governance, risk and compliance, Multichoice

Stephen Osler, Co-Founder & Business Development Director, NClose 

Craig Rosewarne, managing director, Wolfpack Information Risk 

Bernard Chadenga, vCISO, Founder & CEO, The Cimplicity Institute

04 and 05 June 2024 Sandton Convention Centre

05 June 2024 – Panel discussion in the Plenery @ 09:25:  

Cyber State of the Nation – what does the cyber threat landscape look like in South Africa and what are we doing about it?

  • Where are we as a nation in terms of cyber security? Where does South Africa sit on the ITU’s Global CyberSecurity Index?
  • Who are the key stakeholders in the cyber security ecosystem? Which public and private organisations/initiatives are currently responsible for cyber security?
  • What further structures and/or collaboration are needed to ramp up the country’s response to cyber threats?
  • How should we continue this conversation to ensure that concrete action steps are taken after the Summit? 

Panellists:

Craig Rosewarne, Managing Director, Wolfpack Information Risk

Ayanda Peta, CISO, African Rainbow Minerals

Adv. Jacqueline Fick, CEO, Viz Strat Solutions

Katekani Hlabathi, General Manager, ICT Security, State Security Agency

Munyaradzi Naison Silomonye, Cybercrime Operations Officer, Cybercrime Directorate, Africa Joint Operations Against Cybercrime, INTERPOL

REGISTER NOW For the Cyber Self-Defence Half-day workshop

This interactive workshop will educate participants on the various personal cyber threats that individuals face. Just as it is essential to learn how to defend against an attacker in the physical realm, we need to learn similar survival skills with our growing dependence on the digital realm. We will cover various topics, from basic cyber hygiene practices to advanced techniques to equip you with the knowledge and tools necessary to protect yourself, your family and your organisation.

Key areas covered:

  • Overview of the African cyber threat landscape, including real cases investigated.
  • Examples of actual cyber-attacks conducted – tools and techniques used.
  • Learn how to identify and respond to personal cyber-attack.
  • Steps to take if you become a victim of a cyber-attack.
  • What recovery steps to take after an incident.
  • Reporting cyber incidents to the relevant authorities.
  • Become more tech-savvy: Demonstrations of how to use security tools effectively to harden your digital footprint (e.g., password managers, VPNs, maintaining secure home networks, managing your children’s device time).
  • Resources for further learning and staying informed about cybersecurity trends.
  • Q&A session to address specific concerns and scenarios.

Open-source intelligence tools utilised:

  • Search engines
  • Social media
  • Emails
  • People search
  • Telephone lookups
  • Online maps
  • Documents/metadata
  • Image/videos
  • Domain names
  • IP addresses
  • Government/business records
  • Virtual currencies
  • Data leak sites

This workshop will be run by experienced cyber threat team members from Wolfpack’s Community team, who have provided pro bono investigation assistance to hundreds of victims on the continent. The workshop is designed to be interactive, with a mix of lectures, discussions, and practical exercises aimed at empowering individuals with the knowledge and skills they need to navigate the digital world securely.

Don’t become a victim – book your seat today:

Can’t afford a Chief Information Security Officer to defend against Cyber Threats? 

Why not consider Virtual CISO Services for effective protection?

#cyberdefence

Did you know that 6.5% of employees have given away sensitive information to fake vishing calls?

Our research found that 70% of organisations have been victims of fake phone calls (vishing). Vishing attacks cost an average of $14 million per year per organisation.

The 2024 Vishing Simulation Response Report shows how industries and departments are at risk of vishing using AI-based voice phishing simulation tools. This research helps organisations identify vulnerabilities and implement effective voice phishing defences.

MAKE AN IMPACT

Join AFFT’s community of supporters and donate any of the below In-Kind Donations.  AFFT is looking for:

  • Gently Used Clothing and Toys
  • Gently used homeware
  • Tinned Goods

Contact Africa Food For Thought for more information: info@afft.org.za

Please share this newsletter if you have benefited from the content.

We look forward to hearing from you.

Scroll to Top