After days of silence, Facebook CEO Mark Zuckerberg has responded to the controversy over the 2014 leak of private Facebook user data to a firm that went on to do political consulting work for the Donald Trump campaign in 2016.
Cambridge Analytica got the data by paying a psychology professor, Aleksandr Kogan, to create a Facebook personality quiz that harvested data not only about its own users but also about users' friends. Kogan amassed data from around 50 million users and turned it over to Cambridge.
2018-03-15
MyBroadband noted that towards the end of 2013 news emerged that Cell C and MTN would finally be implementing double opt-in systems for wireless application service providers (WASPs).
Vodacom rolled out its double opt-in system two years prior. The double opt-in system cost it a 33% reduction in WASP revenue, according to Vodacom, but the operator said it was worth it for the dramatically reduced fraud complaints.
Along with the unveiling of its new double opt-in systems, Cell C and MTN also launched ways for their users to manage their content subscriptions.
Previously subscribers had no way to prevent a WASP from charging their cellular accounts, or to unsubscribe from premium content services without first contacting the WASP.
Vodacom also has a method to manage WASP subscriptions in the form of an SMS command to unsubscribe from everything.
The various WASP subscription management options of South Africa’s mobile operators are as follows:
Cell C
Using the USSD string *133*1# subscribers can block all existing and future content billing.
MTN also offers a USSD string (*141*5#) to manage premium content subscriptions, but unlike Cell C’s it doesn’t block all future subscriptions. Instead, users select which services to unsubscribe from.
Telkom Mobile said it does not offer an option for WASPs to charge for subscription services.
Vodacom users can unsubcribe from all WASP services by sending 'STOP ALL' to 30333.
Should you be subscribed to WASP services, you should receive the response 'Your Vodacom request to delete all WASP service has been logged'. According to Vodacom, you should then receive messages of the format, 'You have been unsubscribed from SERVICE with effect from DATE'.
2018-03-05
Modern kids have never known a time when they couldn't connect to the entire world via the internet. In fact, they probably spend more time online than anyone else—certainly more than their parents.
If you are a parent, this presents a problem, as there are explicit, disturbing, and illegal sites on the web that you don't want your kids to encounter.
Furthermore, with the ever-increasing number of devices that kids use to connect, you simply can't supervise every moment they're online on your own.
That's where parental control services can help. This software gives you the ability to block unwanted web content, limit screen time, restrict the use of risky applications, and more.
2018-02-27
Pwned Passwords are half a billion real world passwords previously exposed in data breaches. This exposure makes them unsuitable for ongoing use as they're at much greater risk of being used to take over other accounts.
Password reuse is normal. It's extremely risky, but it's so common because it's easy and people aren't aware of the potential impact. Attacks such as credential stuffing take advantage of reused credentials by automating login attempts against systems using known emails and password pairs.
The Pwned Passwords service was created in August 2017 after NIST released guidance specifically recommending that user-provided passwords be checked against existing data breaches . The rationale for this advice and suggestions for how applications may leverage this data is described in detail in the blog post titled Introducing 306 Million Freely Downloadable Pwned Passwords.
In February 2018, version 2 of the service was released with more than half a billion passwords, each now also with a count of how many times they'd been seen exposed.
2018-01-29
Malware is on the rise. And phishing attacks. How about ransomware, data theft, and data breaches? Yup — all on the rise. Not only are cybersecurity attacks and vulnerabilities on the rise, but their impact also costs more, takes longer to recover from, and can be extremely damaging.
With that bleak outlook in mind, it is high time for you to consider your system security. There are so many anti-this and anti-that programs out there it is difficult separating the security wheat from the cyber chaff.
If you’re confused about security apps, you need this guide presented by Make Use Of.
2018-01-22
Over the past decade, educational instruction has become increasingly digitized as districts rush to dole out laptops and iPads to every student. Yet the most important question, "Is this what is best for students?" is glossed over.
Veteran teachers Joe Clement and Matt Miles have seen firsthand how damaging technology overuse and misuse has been to our kids. On a mission to educate and empower parents, they show how screen saturation at home and school has created a wide range of cognitive and social deficits in our young people. They lift the veil on what’s really going on in schools: teachers who are often powerless to curb cell phone distractions; zoned-out kids who act helpless and are unfocused, unprepared, and unsocial; administrators who are influenced by questionable science sponsored by corporate technology purveyors.
They provide action steps parents can take to demand change and make a compelling case for simpler, smarter, more effective forms of teaching and learning.
2018-01-08
CSO reports on the new challenges and threats that will face IT departments in the year ahead.
2017-12-10
2017-11-06
Sharing fake news stories online and spreading false information could lead to criminal charges against the perpetrators as reported by News24.
Hoax-alert reported that fake news website [email protected] posted an article titled "FARM MURDERS: US PRESIDENT THREATENS TO INTERVENE IF SOUTH AFRICA DOES NOT COME UP WITH A SOLUTION TO FARM MURDERS". They were unable to locate any source for the Trump quote or any of the "news sources" mentioned in the article that made any mention of Trump "lending a hand or coming to the rescue" in South Africa.
SA People further notes that fake news sites have trotted out yet another fake story about American President Donald Trump and South Africa.
How to spot fake news according to News24:
-
+ Look to see if reputable news sites are also reporting on the story;
-
+ Check for odd-looking domain names;
-
+ Check the 'About Us' tab on websites or look up the website on snopes.com for more information about the source;
-
+ Watch out for common news websites that end in '.com.co' as they are often fake versions of real news sources;
-
+ Bad web design and use of all caps can also be a sign that the source you're looking at should be verified;
-
+ If the story makes you really angry it’s probably a good idea to keep reading about the topic via other sources to make sure the story you read wasn't purposefully trying to make you angry in order to generate shares and advertising revenue.
2017-11-05
The main objective of the Higher Certificate in IT is to provide you with a wide-ranging, sound, academically based and industry oriented training course during which you’ll be steeped in software design and development; exposed to a wide range of technologies that will shape the future of computer applications over the next few years; fully grounded in both the theoretical and practical aspects of IT.
The course is offered part-time over 2 years, which consists of 10 modules.
2017-10-31
A South African bank customer who has a complaint against his or her bank may approach the OBS for assistance.
2017-10-19
MyBroadband reports on the database leak which revealed the private data of 30 million South Africans.
It is reported that the data included extensive personal attributes such as names, addresses, ethnicities, genders, birth dates, government-issued personal identification numbers, and 2.2 million email addresses.
Readers can have a look whether their e-mail address has been compromised on the "have i been pwned?" website here.
2017-10-10
Forbes reports on the 5 computer security questions readers keep asking.
2017-10-03
This Certificate in Cyber Security (2018 first intake now open until 30 November 2017) is aimed at individuals currently working full time that would like to get a formal qualification in Information and Cyber Security. The Certificate standard is on NQF Level 5, and successful students will get an official Certificate from the University of Johannesburg.
The course consist of 5 modules, each module lasting 3 days. Each module will be formally examined and all 5 modules must be passed to pass the course.
2017-08-11
Disclaimer: Please note that the posted information does not indicate any advice or guidance or support by the UJ Centre for Cyber Security and readers make use of Bitcoin services at their own risk.
Bitcoinzar is a website dedicated to individuals living in South Africa who are interested in Bitcoin.
The website contains information on local
Bitcoin exchanges,
Bitcoin wallets and
Bitcoin costs in South Africa.
2017-07-20
TechRadar warns users to not fall victim to the increasing amounts of Android malware and provide a list of the 10 best security and antivirus for Android.
Please note that these suggested antivirus apps have not been tested by the UJ Centre for Cyber Security and readers make use of these apps at their own risk.
2017-06-02
The Citizen Reports that the new online suicide game, Blue Whale, may soon be available in South Africa.
The Blue Whale app can be downloaded while an 'administrator' or 'mentor' then gives the player a task every day for the next 50 days, with the final task being suicide. Tasks include self-mutilation, watching horror movies, standing on the edge of the roof of a dangerously high building and listening to music that the 'administrator' sends.
The sickening tasks lead to sleep deprivation, brainwash players as the challenges grow darker and more severe, and on the last day, the exhausted and confused player is encouraged to commit suicide.
The player must take a photo of every completed task to prove to the administrator that it has been completed.
Parents are cautioned to monitor their children’s use of social media and their internet usage.
Eyewitness News further notes that the phrase 'Blue Whale' has made international headlines in recent months, and it has a number of local organisations, including the South African Depression and Anxiety Group and the Films and Publications Board, concerned that teenagers here may soon be exposed to similar dangers.
While concern has been raised over the possible emergence of the so-called Blue Whale game or challenge in South Africa, those looking into the existence of the phenomenon believe there is enough to warrant being on alert and monitoring developments.
2017-05-25
The Protection from Harassment Act 17 of 2011 is available as an online document.
Readers are referred specifically to the definitions of 'harassment' and 'harm', as well as section 3(2) that stipulates what a court has to consider in the granting of an interim order.
Also important is the power to have service providers produce details of where offending data messages may have originated.
A selection of tips and tools for parents who want to ensure their child's online safety and security.
2018-03-05
Modern kids have never known a time when they couldn't connect to the entire world via the internet. In fact, they probably spend more time online than anyone else—certainly more than their parents.
If you are a parent, this presents a problem, as there are explicit, disturbing, and illegal sites on the web that you don't want your kids to encounter.
Furthermore, with the ever-increasing number of devices that kids use to connect, you simply can't supervise every moment they're online on your own.
That's where parental control services can help. This software gives you the ability to block unwanted web content, limit screen time, restrict the use of risky applications, and more.
Apple iOS smartphone security tips
While iOS is generally considered to be quite secure, a few configuration items can improve its security.
Some changes have very little functionality impact, while others are more visible but probably only needed in specific environments.
This guide, compiled by Rapid 7, contains some of the most important, obvious ones, and contains a GIF for each configuration step to be taken.
If you already know everything about iOS security, use this as a way to easily explain to friends and relatives how certain configurations are changed.
Access the article here >>>
Personal Security Scams
2018-03-05
MyBroadband noted that towards the end of 2013 news emerged that Cell C and MTN would finally be implementing double opt-in systems for wireless application service providers (WASPs).
Vodacom rolled out its double opt-in system two years prior. The double opt-in system cost it a 33% reduction in WASP revenue, according to Vodacom, but the operator said it was worth it for the dramatically reduced fraud complaints.
Along with the unveiling of its new double opt-in systems, Cell C and MTN also launched ways for their users to manage their content subscriptions.
Previously subscribers had no way to prevent a WASP from charging their cellular accounts, or to unsubscribe from premium content services without first contacting the WASP.
Vodacom also has a method to manage WASP subscriptions in the form of an SMS command to unsubscribe from everything.
The various WASP subscription management options of South Africa’s mobile operators are as follows:
Cell C
Using the USSD string *133*1# subscribers can block all existing and future content billing.
MTN also offers a USSD string (*141*5#) to manage premium content subscriptions, but unlike Cell C’s it doesn’t block all future subscriptions. Instead, users select which services to unsubscribe from.
Telkom Mobile said it does not offer an option for WASPs to charge for subscription services.
Vodacom users can unsubcribe from all WASP services by sending 'STOP ALL' to 30333.
Should you be subscribed to WASP services, you should receive the response 'Your Vodacom request to delete all WASP service has been logged'. According to Vodacom, you should then receive messages of the format, 'You have been unsubscribed from SERVICE with effect from DATE'.
2017-11-06
Sharing fake news stories online and spreading false information could lead to criminal charges against the perpetrators as reported by News24.
Hoax-alert reported that fake news website [email protected] posted an article titled "FARM MURDERS: US PRESIDENT THREATENS TO INTERVENE IF SOUTH AFRICA DOES NOT COME UP WITH A SOLUTION TO FARM MURDERS". They were unable to locate any source for the Trump quote or any of the "news sources" mentioned in the article that made any mention of Trump "lending a hand or coming to the rescue" in South Africa.
SA People further notes that fake news sites have trotted out yet another fake story about American President Donald Trump and South Africa.
How to spot fake news according to News24:
-
+ Look to see if reputable news sites are also reporting on the story;
-
+ Check for odd-looking domain names;
-
+ Check the 'About Us' tab on websites or look up the website on snopes.com for more information about the source;
-
+ Watch out for common news websites that end in '.com.co' as they are often fake versions of real news sources;
-
+ Bad web design and use of all caps can also be a sign that the source you're looking at should be verified;
-
+ If the story makes you really angry it’s probably a good idea to keep reading about the topic via other sources to make sure the story you read wasn't purposefully trying to make you angry in order to generate shares and advertising revenue.
2017-10-31
A South African bank customer who has a complaint against his or her bank may approach the OBS for assistance.
A summary of the most common Personal Security Scams by: Alert Africa.
Educate yourself regarding identity theft, classified ads theft, social media scams, rental scams and more.
Have a look by clicking here.
A summary of South African Revenue Service (SARS) scams and phishing attacks.
As South African tax payers need to be aware of email scams, SARS has created a section on their website where they post updates of any scams they have heard about.
These are listed here.
A discussion on the Insider Cyber Threat with Prof Basie von Solms on Brink.
Read the full article here.
Research Papers and Laws
2017-05-25
The Protection from Harassment Act 17 of 2011 is available as an online document.
Readers are referred specifically to the definitions of 'harassment' and 'harm', as well as section 3(2) that stipulates what a court has to consider in the granting of an interim order.
Also important is the power to have service providers produce details of where offending data messages may have originated.
2017-01-26
The department of Justice and Constitutional Development of the Republic of South Africa has published the Cybercrimes and Cybersecurity Bill along with supporting documents. Access the articles here:
Digital identity security quiz
Do you know how secure your digital identity is? By: SimpliSafe.
Access the questionnaire here.
Secure Password Check
Online Secure Password Check by Kaspersky Lab.
See how strong your passwords are by clicking here or clicking on the image below.
Desktop Anti-Virus Listing {{Windows}}
Mobile Anti-Virus Listing {{Android}}
Note:
It is also important to know that some of the Anti-Virus Software Packages listed above come with firewall bundled as part of the package. So it is not always necessary to install a separate firewall package.
Most modern Windows Operating System Versions are released with a software Firewall. Note that these standard firewalls will in most cases not be as effective as some of the software firewalls listed above.
For more information about the importance of Firewall Software please visit the following page:
Understanding Firewalls - (US-CERT).
This link is provided for informational purposes only and does not represent an endorsement by, or affiliation with the US-CERT (DHS).
