Namibia on cybercrime radar as digital security flaws exposed
Users urged to boost security after breach
An expert warns that cybercriminals can use stolen data for a number of nefarious purposes, including unauthorised cloning of personal social media accounts, fraudulent credit applications and creating legal complications due to identity theft.
Just days after an international cybercrime group – Akira – claimed responsibility for the recent attack on Paratus Namibia, a cybersecurity expert warned that the breach has highlighted weaknesses and could lead to more frequent attacks in Namibia.
"Namibia is now on the radar of cybercrime groups. This breach reveals weaknesses in our digital infrastructure, and unless urgent steps are taken, similar incidents could become more frequent," cybersecurity expert Dr Arpit Jain warned last week.
The attack on Paratus was perpetrated around two months after the state-owned telecommunications service, Telecom Namibia, allegedly experienced a data breach.
Akira claims to possess 84 GB of information, including digital copies of driver’s licences, identity documents and passports, as well as contact details for employees and clients and financial information related to audits, reports and payment details.
However, Paratus, through their managing director Andrew Hall, said information stored in the cloud was encrypted and thus not usable by external parties.
Threat to users
Jain, however, warned that the information Akira claims to possess can be used in several ways.
"Criminals can use such data for identity theft, fraudulent transactions and even illegal travel. Victims may face socially manipulated attacks, phishing, unauthorised cloning of their social media accounts, fraudulent credit applications, or legal complications due to impersonation," he said.
"Whether cyberattacks target personal bank accounts or the accounts of larger institutions, there can be serious consequences, he explained.
"Personal bank accounts can be exploited for fraud, while leaked financial records of companies can expose the company's financial status and reports, potentially leading to economic crimes, market disruption and significant financial losses," he added.
Jain also warned that the consequences of a data breach will not blow over within a few weeks.
"The full effects of the attack may take months to fully emerge. We must be more cautious after this incident, as this is the second attack in the telecommunications sector," he said, adding that businesses and government entities must strengthen their cybersecurity frameworks to prevent further breaches.
According to Jain, users should be on the lookout for phishing attempts, fraudulent financial activities and potential data misuse.
"Individuals are urged to monitor their financial statements, change passwords and set up multi-factor authentication," he advised.
Take care
Paratus stated in a declaration that users should tread lightly when it comes to unexpected communication that appears to come from their organisation.
Users are warned not to click on unknown or unexpected links in emails that appear to come from Paratus. Any communication that seems suspicious can be reported via email to [email protected].
Jain encouraged Namibians to make digital hygiene a priority.
"To improve security, individuals should regularly change their internet banking passwords and ATM PIN numbers. In addition, it is crucial to be vigilant of unexpected SMS messages containing links, as they may be phishing attempts designed to steal personal information," he said.
"Under no circumstances should one share one-time passwords (OTPs), as malicious actors can use them to gain unauthorised access to sensitive accounts. If you notice any suspicious activity or unauthorised transactions in your bank statements, it is crucial to act immediately," he urged.
"Contact your bank right away to report the issue and request a temporary block or freeze of your account to prevent further unauthorised access. Reporting it quickly can help reduce potential financial losses and enable the bank to investigate the breach."
- [email protected]
"Namibia is now on the radar of cybercrime groups. This breach reveals weaknesses in our digital infrastructure, and unless urgent steps are taken, similar incidents could become more frequent," cybersecurity expert Dr Arpit Jain warned last week.
The attack on Paratus was perpetrated around two months after the state-owned telecommunications service, Telecom Namibia, allegedly experienced a data breach.
Akira claims to possess 84 GB of information, including digital copies of driver’s licences, identity documents and passports, as well as contact details for employees and clients and financial information related to audits, reports and payment details.
However, Paratus, through their managing director Andrew Hall, said information stored in the cloud was encrypted and thus not usable by external parties.
Threat to users
Jain, however, warned that the information Akira claims to possess can be used in several ways.
"Criminals can use such data for identity theft, fraudulent transactions and even illegal travel. Victims may face socially manipulated attacks, phishing, unauthorised cloning of their social media accounts, fraudulent credit applications, or legal complications due to impersonation," he said.
"Whether cyberattacks target personal bank accounts or the accounts of larger institutions, there can be serious consequences, he explained.
"Personal bank accounts can be exploited for fraud, while leaked financial records of companies can expose the company's financial status and reports, potentially leading to economic crimes, market disruption and significant financial losses," he added.
Jain also warned that the consequences of a data breach will not blow over within a few weeks.
"The full effects of the attack may take months to fully emerge. We must be more cautious after this incident, as this is the second attack in the telecommunications sector," he said, adding that businesses and government entities must strengthen their cybersecurity frameworks to prevent further breaches.
According to Jain, users should be on the lookout for phishing attempts, fraudulent financial activities and potential data misuse.
"Individuals are urged to monitor their financial statements, change passwords and set up multi-factor authentication," he advised.
Take care
Paratus stated in a declaration that users should tread lightly when it comes to unexpected communication that appears to come from their organisation.
Users are warned not to click on unknown or unexpected links in emails that appear to come from Paratus. Any communication that seems suspicious can be reported via email to [email protected].
Jain encouraged Namibians to make digital hygiene a priority.
"To improve security, individuals should regularly change their internet banking passwords and ATM PIN numbers. In addition, it is crucial to be vigilant of unexpected SMS messages containing links, as they may be phishing attempts designed to steal personal information," he said.
"Under no circumstances should one share one-time passwords (OTPs), as malicious actors can use them to gain unauthorised access to sensitive accounts. If you notice any suspicious activity or unauthorised transactions in your bank statements, it is crucial to act immediately," he urged.
"Contact your bank right away to report the issue and request a temporary block or freeze of your account to prevent further unauthorised access. Reporting it quickly can help reduce potential financial losses and enable the bank to investigate the breach."
- [email protected]
Comments
Namibian Sun
No comments have been left on this article