Local businesses, sitting ducks for cyber crime
Baboki Kayawe | Thursday October 19, 2017 16:33
Local cyber security experts, IT academics, researchers and even a Federal Bureau of Investigations special agent were among technocrats speaking at the Third African Cyber Crime conference held yesterday.
Most of the experts cautioned that cyber security was being taken far too casually in a country where most of the business community is data and Internet reliant.
Prominent software developer, Itumeleng Garebatshabe said a recent survey of a commercial hub populated by Botswana Stock Exchange-listed companies had found gaping holes in cyber security.
“Our recent survey found that most of these BSE companies had their Wi-Fi networks open during the Christmas and Independence holidays,” he said.
“This is dangerous as it exposes corporate information to hackers who could use the data for other purposes. Most of these Wi-Fi networks are accessible metres away from those companies’ premises and people with evil intentions could easily crack the passwords and walk into their systems.”
Garebatshabe said 90% of corporate and business websites in the country face threats of cyber attacks due to developers’ lack of vulnerability awareness.
The higher the systems’ vulnerability the more it is exposed to cyber attacks, hence confidential information could be easily mined and used even for commercial purposes, he said.
He warned that Botswana continues to have a high population of unemployed network engineering and IT graduates who could be easily tempted to go into hacking for commercial benefit.
A forensic criminologist, Lauri James urged employers to conduct profiling as part of their recruitment process as increasingly, cyber criminals are insiders.
She also echoed Garebatshabe’s sentiments on the need for watertight security protocols, which include policies that ensure that departing employees do not retain network access rights.
She also urged employers and human resource practitioners to be observant so as to detect any behavioural changes that could point to employees misusing company information.
James, who, has 10 years experience as a criminologist, forensic profiler and investigator, also said local laws must be strengthened around financial criminal records.