The Information Security Group of Africa

Anonymous versus Los Zetas

admin — Tue, 08 May 2012 13:18:35 +0000

In October 2011 the hacker group Anonymous, responsible for breaching the security of banks, financial institutions and government agencies, threatened Los Zetas, a Mexican drug cartel and a former paramilitary-wing of the Gulf Cartel, for kidnapping one of its members from a street protest in the Mexican state of Veracruz.

The threat was issued via an online video and a 5 November ultimatum was given to Los Zetas.

If the member was not released, Anonymous said it would start hacking into secure websites/protected accounts and release sensitive information concerning the members of Los Zetas and those working with them such as journalists and police officers.

They stated that they were prepared to hack into cartel members’ bank accounts and wreak financial havoc on the drug dealers.

Mexican Drug Cartels and Cyberspace: Opportunity and Threat

admin — Tue, 08 May 2012 13:11:45 +0000

José Pedrosa de Abreu is a Portuguese Freelance Intelligence Analyst. He has vast experience in Marketing and Business Intelligence, having worked in these areas for 13 years. He is also a special subjects researcher for InfoSec Institute.José possesses extensive knowledge in the fields of International Politics and Intelligence. He holds Post Graduate degrees in International Relations, Intelligence and Security. He wrote a two volume book about Intelligence, The Intelligence Manual, in association with the GIA Group.

1) Mexican Drug Gangs Kidnap Computer Hackers and Programmers

Mexican drug trafficking organizations are increasingly demonstrating a desire to make money from cyber-crime, attracted by the high profits and minimal risks, offered by such activities as fraud, theft, and piracy.

These gangs lack the needed technical know-how within their ranks, which means they would be desperate to recruit programmers with the expertise to break into the world of cyber-crime.

Recent claims that computer programmers are being forcibly recruited by Mexican drug gangs, if true, suggest that these groups are acquiring the ability to reap the potential profits of cyber-crime.

It has emerged that this computer and IT experts have been hacking into bank systems and program credit card fraud scams, among other activities, in order to acquire additional funds for the cartels, on top of what they already get from selling drugs.

According to specialists, the potential profits generated for this kind of criminal activity is already comparable to that coming from the drugs.

Dmitry Bestuzhev, a specialist with Kaspersky Lab, stated that attacks on the world’s largest banks in the US, Europe or Russia are taking place on a daily basis.

It is expected that we’ll be seeing these hacker kidnappings much more often.

Presentation by Minister for Economic Development to Provincial and Local Government Conference giving a summary of the Government Infrastructure Plan 13.4.2012

Ronald van der Merwe — Wed, 25 Apr 2012 10:43:25 +0000

SA Governments bold infrastructure plan to transform the economy, laying the basis for growth and jobs. An important read for any patriotic citizen

Regards

Craig

Read More ->> (plus download a 2mb presentation)

PoPI Update

admin — Mon, 02 Apr 2012 12:38:27 +0000

Last November, the parliamentary working committee met to discuss the fifth working draft of the Protection of Personal Information Bill. The committee has not met since, but is likely to meet in April. The committee intends to submit its sixth working draft to the full Portfolio Committee (on Justice and Constitutional Development) for consideration. This will launch the final legislative process prior to enactment of the Bill. We can anticipate a three- to five-month period from when the Bill is presented to the Portfolio Committee until it is enacted as law. Thereafter, organisations will have one year to achieve full compliance.

Some of the changes in the sixth working draft, which is not yet publically available, include:
•   a general prohibition on the processing of children’s information–the Information Regulator will be empowered to authorise such processing, subject to certain conditions;
•   aligning the literary and artistic exemptions with foreign legislation;
•   reconsideration of the deletion of the phrase “sexual life” as one of the categories of “special personal information”;
•   clarification of some of the powers of the Information Regulator;
•   increasing the maximum penalties from R1 000 000 to R10 000 000.

To Join the ISG Africa Privacy SIG please contact russell.opland@za.pwc.com

SANS IT security training in SA for the first time!

Ronald van der Merwe — Mon, 26 Mar 2012 15:39:57 +0000

The globally respected SANS Institute will deliver its IT security professionals’ training in South Africa for the first time, when it participates in the annual ITWeb Security Summit, in Sandton, in May.

The SANS Institute, described as the world’s most trusted source of information security training, now has programmes reaching more than 165 000 security professionals around the world. The SANS method of training has been effectively in use for over 20 years and more than 15 000 information security professionals train with SANS every year.

http://www.itweb.co.za/index.php?option=com_content&view=article&id=52538:sans-it-security-training-in-sa-for-the-first-time&catid=551

ISG Africa KZN Chapter Meeting – 29.03.2012

admin — Fri, 23 Mar 2012 09:07:12 +0000

KZN Chapter Meeting
Date: Thursday 29 March 2012
Time: 6:00pm (Please note earlier start..)
Venue: PwC Musgrave, 102 Essenwood Road (Stephen Dlamini Road), Berea (http://g.co/maps/q3wwd)
Topic: Erich Samuel – “Trouble with Assumptions – Assuming a source IP is a fact, can lead to bad judgments.”

For more information or to book your seat please contact Richard Keller – richard.keller@gmail.com

Cabinet Approves National Cyber Security Policy Framework

Alpha Wolf — Tue, 13 Mar 2012 07:23:17 +0000

This is an important step in the right direction for South Africa to combat cyber threats more effectively. However there is just still so much work ahead in implementing the required components. I would expect to see stronger collaboration between both public and private bodies in uniting to build a world class capability as a start.

Craig.

———-

Cabinet has approved a national cyber security policy framework.

According to a recent media statement, the framework makes provision for the establishment of “a number of structures and institutions” to coordinate the activities of “various security cluster departments” already working on “a wide range of issues”.

It tasks the state security agency with “overall responsibility” for developing, implementing and coordinating South Africa’s cyber security measures “as an integral part of its mandate”.

“The justice, crime prevention and security cluster will deal with the details of this policy framework at its next briefing,” the statement concludes.

An earlier media statement issued following cabinet’s most recent meeting said that the framework outlined policy positions aimed at:

•    addressing national security threats in cyberspace;
•    combating cyber warfare, cybercrime and other “cyber ills”;
•    developing, reviewing and updating existing substantive and procedural laws “to ensure alignment”; and
•    building confidence and trust in the secure use of information and communication technologies.

During February 2010, the department of communications invited input from interested parties on a draft South African national cyber security policy published in notice 118 of Government Gazette 32963.

In an introduction providing context to the proposed policy, amongst other things the following concerns were noted, that:

•    the “various structures” established to deal with cyber security issues are “inadequate” for dealing with the matter “holistically”;
•    the legal provisions for cyber security in South Africa do not adequately address the challenges faced in effectively dealing with cybercrime;
•    bridging “the technology/law divide” remains a “fundamental challenge;
•    securing cyberspace also requires international collaboration at a level South Africa has yet to develop; and
•    South Africa “lags behind” other countries in developing, implementing and monitoring protocols and standards for cyber security, including those affecting the development of software and hardware.

What is the Cost of cybercrime to the SA economy?

admin — Thu, 01 Mar 2012 10:31:20 +0000

Wolfpack will shortly be conducting a study on the cost of cybercrime to SA economy.

It is in the best interest of South Africa (SA) and our neighbouring states to predict, prevent and mitigate the risks to their security. For those risks that we can predict, we must act both to reduce the likelihood of their occurring, and develop the resilience to reduce their impact.

SA is a rapidly developing economy. Many of the current initiatives run by government relate to the rollout of internet connectivity and information technology (IT) to deliver much needed services to the nation. These services and others are under attack by experienced cyber criminals, who may be operating as individuals, organised criminal syndicates or activist groups with a different agenda. These elements exploit vulnerabilities in the use of the internet and other electronic systems to illicitly access or attack information and services used by citizens, business and the government. Why? It is highly effective and the associated risks are typically lower than using traditional criminal means.

A few examples include:

• Corporate SA is losing an estimated R150 billion annually to insider fraud according to law firm Edward Nathan Sonnenbergs and technology is mostly to blame.

• A dozen or so local cases during 2009/10 saw insiders steal almost R1 billion in EFT (electronic fund transfer) fraud alone. •The 2010 SA Police Services (SAPS) crime statistics show that a total of 84 842 white-collar crime cases were reported between April and March 2009/10, marking a 56% increase from 2006.

• According to RSA Security, SA is the No 1 country in Africa experiencing bank related phishing attacks and the third most targeted country in the world.

We desperately need to unite and take action against this scourge that is sweeping across both SA and its global partners. This Cybercrime Barometer intends to firstly identify the true cost of cybercrime to the SA economy and secondly to propose a collaborative framework that can be adopted by both the private and public sector as a catalyst in combating cybercrime more effectively.

Download the The South African 2012 Cybercrime Barometer Proposal (right click, save as)

We are launching the NEW CHFI v8 Course end of Feb – GET CERTIFIED IN THE WORLD’S LATEST AND MOST COMPREHENSIVE COMPUTER FORENSICS PROGRAM

admin — Mon, 13 Feb 2012 08:23:03 +0000

We are launching the NEW CHFI v8 Course end of Feb.

GET CERTIFIED IN THE WORLD’S LATEST AND MOST COMPREHENSIVE COMPUTER FORENSICS PROGRAM

Cybercrime is the most serious threat to the presence of individuals, corporations, and governments on the Internet.

Is your organization ready to combat against it?

Cybercrime costs organizations millions of dollars.

Is your organization capable of preparing forensically sound digital evidence that is admissible in a court of law?

Many distinguished information security experts believe that Computer Forensics is the antidote to Cybercrime.

Does your organization have designated computer forensic professionals to identify, track, and prosecute cybercriminals?

The release of EC-Council’s Computer Hacking Forensic Investigator version 8 (CHFIv8) certified training program presents a detailed and methodological approach to computer forensics and evidence analysis. Loaded with over 200 hands-on labs and 500 cuttingedge tools, the new version 8 consists of the most advanced forensics techniques used in the cyber world.

This improved skill set will prepare IT professionals to meet the toughest challenges in fighting cybercrime. If you or your organization requires the knowledge or skills to identify, track, and prosecute the cybercriminal, then this is the program for you.

G.T.S.P will host the South African Global Launch on CHFIv8 from 27 February – 2 March 2012.

An exclusive Launch Class Package is available to those who join the Global Launch Class:

1. A complimentary “Secondpass Voucher” for those who fail their exam (valid until the end of June 2012) worth 500 USD

2. A limited edition commemorative metal plated certificate of attendance

3. A complimentary 4 day iLab Access Pass worth 100 USD

4. Your name and testimonial posted on EC-Council’s CHFIv8 Website

*This offer is open to all professionals, including those who have been certified as a C|HFI through earlier versions.

What are you waiting for? The new CHFIv8 Launch Class is a once in a lifetime opportunity that cannot be missed. Seats are limited.

Early Bird pricing is available.

For more information contact us:

Tel: +27 (0) 12 661-9621 / 661-7350

Email: training@gtsp.co.za / info@gtsp.co.za

Web: www.gtsp.co.za

BOOK NOW! EARLY BIRD PRICING ENDS 22 FEB, 2012

ISG Durban: February 2012 Meeting

ralfe — Mon, 13 Feb 2012 08:09:07 +0000

February’s meeting will be a two-parter. We will have two short talks by Ryan and Ralfe. It should be interesting, so bring your friends and come along. Here are the details for this month’s talk:

Date: Thursday 23 February 2012

Time: 6:30pm
Venue: Imply IT, 46 Kensington Drive, Durban North (http://g.co/maps/ffh6y)

Topic1: Ryan Nel – “Project Paladin: Automated Network Discovery and Security Scanning”

Topic2: Ralfe Poisson – “PDF Malware”

Hope to see you all there.

Regards,

Durban ISG Committee