All the latest UK technology news, reviews and analysis
|
|
|
11 Jun 2008
A cyber-crime syndicate is believed to have defrauded the South African government of more than £12.8m in a series of spyware frauds.
The crimes were revealed by the South African Minister for Finance and Economic Development, and have resulted in 32 arrests in connection with more than 80 separate fraud counts.
The case is thought to be South Africa's largest reported cyber-crime spree by a single gang.
Geoff Sweeney, chief technology officer at IT security vendor Tier-3, said that spyware attacks are notoriously difficult to stop owing to their unpredictable nature.
"The evolution of malware has reached the point where the lines are blurring between viruses, Trojans and what we call multi-vector IT security threats," he said.
"These fraudsters appeared to use a sophisticated combination of attacks that consisted of a physical device and a malware component, as witnessed by the fact they have been getting away with their crimes for nigh on three years."
Sweeney warned that, in common with more sophisticated IT security attacks, frauds of this nature are very difficult to stop using a traditional single line of defence.
"Companies need to rethink their strategy in the light of the increasing sophistication on the part of the fraudsters," he said.
"They should consider installing multiple layers of defence, including behavioural analysis technology which can look for abnormal patterns of hardware change or network behaviour such as those that may have been used in this attack."
Sweeney believes that behavioural analysis is "a security technology in the ascendant" for the simple reason that it acts as a safety net for all forms of IT security threats.
"Had the South African government and its agencies installed this form of security technology, they could have avoided the fraud taking place," he said.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Systems Analysis Project Lead - UML, Agile, Waterfall...
IT Business Analyst - ISEB, PRINCE2 - Southampton, Hampshire...
Predictive Modelling analytics - (SAS) - South-East...
iOs Developer - JEE, cocoa, Objective-C - Midlands (potential...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
No Surprises
Well this comes as no surprise ZA-CERT was created to protect the interest of South Africa and it's people online. Yet to this day the government still consistently refuses to acknowledge there plight or presence and as of yet. Now almost three years down the line it has not received any form of government funding. Driven purely through just security conscious organisations in the private sector often for services rendered has funding been willing fully made available. It's just not a concern for the South African government they spend more time lining there own pockets then honestly contributing.
Posted by: Mark Keegan 13 May 2009