By Nicola Mawson, ITWeb deputy news editor.
Johannesburg, 8 May 2013

Companies that have not paid attention to the Protection of Personal Information Bill need to do so now, but there is still a lack of clarity as to how the information regulator, which will be set up, will deal with breaches of the law.

Click here to read the full story

By Admire Moyo, ITWeb's portals deputy editor..
Johannesburg, 8 May 2013

Startups must protect their investments so that they are not copied and make sure that customers are wowed and spread the word in order to succeed.

So said Roelof Temmingh, MD of Paterva – the developer of Maltego, a locally-developed open source intelligence and forensics application. Temmingh was addressing the ITWeb Security Summit at the Sandton Convention Centre this afternoon.

Click here to read the full story

By Joanne Carew, portals journalist.
Johannesburg, 9 May 2013

Data is an integral part of the battle against fraud.

So says Yolandé Byrd, director of FACTS Consulting, speaking at ITWeb’s 8th annual Security Summit, in Sandton, yesterday.

Data is all around us and can be used in forensic investigations, fraud prevention and incident response, said Byrd during her presentation.

Click here to read full story

Laws to be aware of

By Staff Writer, ITWeb.
Johannesburg, 9 May 2013

There are few legal guidelines that affect the information security sector, but there are interesting developments on the way.

Information security specialist and academic, professor Basie von Solms, from the University of Johannesburg, says pending developments will have a “massive” impact on the sector.

Click here to read full story

By Staff Writer, ITWeb.
Johannesburg, 9 May 2013

The safeguarding of companies’ SAP systems is more crucial than one may think – and more relevant to SA than ever before.

This is according to Alexander Polyakov, CTO of ERPScan, which specialises in the discovery and resolution of security vulnerabilities across the SAP platform.

Click here to read full story

By Bonnie Tubbs, ITWeb journalist.
Johannesburg, 9 May 2013

IT asset disposal (ITAD) is an indispensable part of a company’s day-to-day operations, but do organisations actually dispose of their IT assets properly, especially in light of the severe risks involved?

This is a question posed by Kayode Adesemow, information assurance consultant, chartered engineer and project manager, speaking at ITWeb’s Security Summit this week. Adesemow says it is a well-known fact that intruders, like flowing water, will explore the weakest opening, much like a chain with the weakest link.

Click here to read full story

By Admire Moyo, ITWeb's portals deputy editor.
Johannesburg, 7 May 2013

At this point in time, the adversaries are clearly winning the cyber war, as they have continued to innovate and evolve.

So said Mike Armistead, VP and GM of enterprise security products, Fortify, at HP, in a keynote address at the 8th annual ITWeb Security Summit, held at the Sandton Convention Centre in Johannesburg.

Click here to read full story

By Kirsten Doyle, ITWeb portals editor.
Johannesburg, 7 May 2013

Criminals wishing to remain anonymous must adopt counterintelligence (CI) techniques. There are three basic principles they need to worry about in order to remain out of sight.

This is according to The Grucq, whose presentation at the 8th annual ITWeb Security Summit was entitled: "An underground education: lessons in counterintelligence from history’s underworld".

Click here to read full story

By Kirsten Doyle, ITWeb portals editor.
Johannesburg, 8 May 2013

The Web has created a new and baffling environment: the demand for security versus the desire for freedom.

These were the words of author and investigative journalist Misha Glenny, speaking at the 8th annual ITWeb Security Summit, which kicked off in Sandton this morning.

Click here to read full story

By Admire Moyo, ITWeb's portals deputy editor.
Johannesburg, 7 May 2013

Our Web sites are being used against us, as Web-based attacks have increased by a third from 2011 to 2012.

This was the word from Gordon Love, Symantec’s regional director for Africa, who was addressing the ITWeb Security Summit at the Sandton Convention Centre, in Johannesburg, on Tuesday.

Click here to read full story

By Mariné Jacobs
Johannesburg, 7 May 2013

Physical security can provide a number of guidelines when establishing an information security model, says Johann van der Merwe, global head of information security at De Beers.

“You can get a lot of tips from physical security when you want to get a company’s information security off the ground,” says Van der Merwe.

Click here to read full story

By Joanne Carew, portals journalist.
Johannesburg, 8 May 2013

Economic fraud, denial of service and the theft of confidential information are the main cyber crime concerns for SA.

Speaking at ITWeb’s 8th annual Security Summit, Craig Rosewarne, MD of Wolfpack and founder and chairman of ISG, unpacked the key findings of the 2012/13 SA cyber threat barometer. The report was compiled by Wolfpack, with support from the British High Commission, and comprises extensive research into SA’s readiness to deal with cyber crime.

Click here to read full story

By Cathleen O'Grady
Johannesburg, 8 May 2013

Blindly following accepted best practices can open up opportunities for attackers to exploit well-known defences.

This sentiment was driven home by Dominic White, SensePost CTO, and Jeremy du Bruyn, SensePost senior penetration tester, at the 8th annual ITWeb Security Summit, in Sandton, yesterday.

Click here to read full story

By Admire Moyo, ITWeb's portals deputy editor.
Johannesburg, 8 May 2013

In a world where almost everyone has access to and can afford the latest weapon system technology, it is of paramount importance to first look at the changing threat environment, then examine the attacker’s ‘kill chain’.

So said Francisco Artes, research director at NSS Labs, in a keynote address during the ITWeb Security Summit, in Johannesburg, yesterday.

Click here to read full story

By Cathleen O'Grady
Johannesburg, 8 May 2013

Data analytics has an important role to play in combating fraud, said Vinod Vasudevan, Paladion COO, speaking at the 8th ITWeb Security Summit, in Sandton, yesterday.

“The technology behind fraud is making it much easier to execute, and therefore fraud is on the increase – and covers multiple industries, from banking and insurance to telecoms,” he said. What’s more, “one domain is cutting into the other. If you take a cloned SIM card, it becomes a tool to bypass two-factor authentication in banking, so fraud in telecoms leads to banking fraud”.

Click here to read full story

By Kirsten Doyle, ITWeb portals editor.
Johannesburg, 8 May 2013

Any security programme should start by finding out who is already inside the company. Once any company reaches a certain size, someone will find a way in.

This is according to Richard Bejtlich, CSO of Mandiant, during his keynote at the ITWeb Security Summit.

Click here to read full story

By Kirsten Doyle, ITWeb portals editor.
Johannesburg, 8 May 2013

Threats of cyber espionage, cyber theft and hacking were prominent in 2012, and will continue in 2013.

Speaking at the ITWeb Security Summit this week, security analyst and host of the Risky Business security podcast, Patrick Gray, discussed the LinkedIn attack of 2012 as an example of a growing trend of password hacking.

Click here to read full story