CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

Database Security

Prevent unauthorized access and exceed compliance requirements.

Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

Offensive Security
Solutions to maximize your security ROI
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
Awards and Accolades
Trustwave SpiderLabs Team
Trustwave Fusion Security Operations Platform
Trustwave Security Colony
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats

Experts Gather at Media Roundtable to Discuss Cyber Security and Compliance in South Africa

Trustwave held a roundtable in South Africa on May 23, 2013, to discuss the war on cybercrime and the role of compliance in reducing credit card fraud. The panel was hosted by Andrew Kirkland, country manager for Trustwave in South Africa, and Michael Aminzade, Director of Delivery EMEA at Trustwave, and included notaries from VISA, South African Centre for Information Security, SABRIC and the University of Pretoria.

The panellists included:

  • Andrew Kirkland, country manager for Trustwave in South Africa
  • Michael Aminzade, Director, Delivery, EMEA, Trustwave
  • Beza Belayneh, CEO and CIO, South African Center for Information Security
  • Kalyani Pillay, CEO, SABRIC
  • Bryce Thorrold, Head of Country Risky Management for Sub-Saharan Africa, VISA
  • Sylvia Papadopoulos, lecturer in the Department of Mercantile, Cyber Law at the University of Pretoria

The panel's discussion was directed by questions from the attending media and the most prevalent issues that came to the fore were: the role of banks, the role of vendors and enterprises, the evolution of mobile commerce, and education.

Trustwave's Aminzade explained that the security solutions industry is getting better at educating organisations, especially when compared with the guidance that was being issued 5-7 years ago. "However," he added, "We put security measures in place, but as the users become more sophisticated, so do the hackers. "

The panellists moved through the impact of m-commerce and how banks and other organisations needed to educate consumers and prepare for the increase in mobile malware today. As the number of uneducated users using mobile phones increases, so does the risk of cybercrime as they are not given the tools to manage their devices securely.

In addition, the role of laws such as the Protection Of Personal Information (POPI) Act came under scrutiny as the media and panellists debated their value and whether or not they would make a difference today. Overall, it is believed that it gives consumers more, much needed, power and the businesses have to face a bigger stick when they fail to comply with compliance laws and mandates.

"Developers take shortcuts and this is where cybercrime focuses its efforts - on those weaknesses in code where rushed solutions have flaws they can exploit," says Trustwave's Kirkland. "The infiltrators know that deadlines, financial pressures and urgency can push developers to overlook aspects of their code. We need to stop taking shortcuts and start treating the data we have as valuable."

It is important that business recognise the importance of education and compliance. It's a process that asks employees and organisations to respect procedures to ensure that data remains secure.

"It's not if you get hacked, but when," concludes Aminzade, "Businesses need to ask what message they can give to their customers to show them that they are protected, that they have put measures in place to protect data and that they are able to respond to an issue quickly and correctly."

Related Media Coverage:

Tech Central - "Joint action needed on cyber crime"

News24  Education 'key' to SA Cyber threat

News24 - Take cybercrime seriously, urge experts

IT Web - SA needs offensive cyber warriors

Latest Trustwave Blogs

Unlocking the Power of Offensive Security: Trustwave's Proactive Approach to Cyber Defense

Clients often conflate Offensive Security with penetration testing, yet they serve distinct purposes within cybersecurity. Offensive Security is a broad term encompassing strategies to protect...

Read More

Behind the Scenes of the Change Healthcare Ransomware Attack Cyber Gang Dispute

Editor’s Note – The situation with the Change Healthcare cyberattack is changing frequently. The information in this blog is current as of April 16. We will update the blog as needed. April 16, 2024:...

Read More

Law Enforcement Must Keep up the Pressure on Cybergangs

The (apparent) takedown of major ransomware players like Blackcat/ALPHV and LockBit and the threat groups’ (apparent) revival is a prime example of the Whack-a-Mole nature of combating ransomware...

Read More