16.6 C
Johannesburg
February 13, 2025
Imali Matters

BusinessFeaturedInsuranceInvestmentInvestmentLatest NewsNewsNoticeTips

Be festive but vigilant: Keep cybercriminals at bay this holiday season

As year-end approaches, many people are planning to make the most of the holidays. Unfortunately, this includes cybercriminals, who are poised to exploit people’s more relaxed states and lowered defences.

International Fraud Awareness Week, taking place from 17-23 November, is a timely reminder to protect yourself against digital threats by educating yourself about cybercrime.
JustMoney.co.za, a platform that helps South Africans make good money choices, consulted an expert to source tips for safeguarding finances online.

How do cybercriminals trick you?

Among the various forms of cybercrime, South Africans are most likely to be targeted by scammers and fraudsters, says Wicus Ross, a senior security researcher at Orange Cyberdefense.
“You’re most likely to be a victim of social engineering or manipulation, which can be conducted with little more than an internet connection and a mobile phone,” says Ross. Typical victims include older people, those who are less internet-savvy, or those who seem vulnerable in some other way.
Ross points out that criminals often befriend people on social media and attempt to extract money over time, or manipulate them into doing things for them.
The most common attacks include:
• Phishing, where scammers trick people into sharing sensitive information.
• Bait-and-switch, where superior goods are advertised, but inferior goods are supplied.
• Pretending to be a trusted or reputable source, such as an online shopping site.
• Offering prizes or free downloads in exchange for data or information.
• Faking invoices or manipulating banking details.
• Carrying out SIM-swap attacks.

How to protect yourself

Fortunately, there are many precautions you can take to avoid becoming a victim.
Keep your software current with updates and patches. This can prevent cybercriminals from taking advantage of system vulnerabilities.
Use strong, unique passwords that mix letters, numbers, and symbols. Avoid using dictionary words or the same password for multiple accounts. Enable and use two-factor authentication (2FA) where available. This adds an extra layer of security beyond a username and password, as 2FA requires two types of verification before granting access to an account or system.
Avoid chatting on unmoderated forums. Misinformation may be rife in these chats, and could be used against you.
Sign up for corporate training. Most workplaces offer training on how to recognise and avoid cybercrime attacks.
Back up your data regularly, particularly offline. This can help you recover from a ransomware attempt.
Only shop on secure sites. Not all websites with an SSL certificate are legitimate, Ross warns, and browsers no longer show the traditional “padlock” to validate a site’s legitimacy. Counter this by sticking to trusted retailers that have clear payment, return, and refund policies, and allow 2FA during checkout.
For online shopping, use a mobile shopping app rather than a website. Many experts recommend using mobile apps instead of web browsers because apps often have enhanced security features, including 2FA and biometric options.
Consider using a credit card, rather than a debit card. “When criminals compromise your debit card, your money is stolen,” notes Ross. “Credit cards, although more expensive, offer a buffer of protection for fraud detection and repudiation.”
If you receive an email offer that takes you to a website, don’t click on the link. Instead, visit the company’s website directly or check its social media pages to see if the offer is valid.
Don’t respond to random competitions or sweepstakes. If you haven’t entered a contest or sweepstake, don’t respond to emails, SMSs, or WhatsApp messages claiming you’ve won a prize or large amount of money.
Although such phishing scams are commonly distributed by email, they’re also infiltrating mobile phones, says Ross.
“Smishing” text message scams may ask you to reply with a five-digit code that could lead to unwanted SMS fees and subscription costs. Criminals may also use a raft of other smishing tactics. “Simply delete the text message,” cautions Ross.
Keep your browser updated. Make sure your browser is updated to the latest version. This helps prevent cybercriminals from taking advantage of vulnerabilities in older versions.
Keep your cell phone operating system up to date. Updates often include fixes for newly discovered security vulnerabilities, helping to protect your device.
Use virtual credit cards. Virtual credit cards are digital-only cards issued by banks or credit card companies, for free or a small fee. They generally feature a regularly changing card verification value (CVV), the three-digit number at the back of the card, and can be cancelled after a single transaction.
Set up a separate email account for holiday shopping and online purchases. Such “throwaway” logins can help reduce spam and phishing attacks on your personal, everyday email account and lower the risk of personal information being stolen.
Preferably use a paid antivirus package despite good free alternatives. “When selecting a free solution, ensure you’re not downloading an imitation that could create more problems,” Ross warns. “Research which vendors perform the best and read reviews of the products. At the very least, pick a solution that includes a firewall. Without minimum protection, you’re highly vulnerable to online attacks.”
Use safe Wi-Fi connections. When travelling, it’s best to use mobile data. Although this may be inconvenient and expensive, it’s more secure than using “free” Wi-Fi, advises Ross.
Use a reputable Virtual Private Network (VPN). A VPN is a service that encrypts your data and masks your IP address while you’re using the internet. However, Ross cautions, there are malicious or fake (Trojan) VPNs, so vigilance is crucial.
“Consumers must do their research on VPN providers. As with anti-virus systems, these VPN vendors are in a position of trust, and they have considerable access to your device and data,” he notes.
“If something is ‘free’ then you are the product; ‘free’ must always be treated with scepticism, as nobody gives things away, especially on the internet. In general, if something sounds too good to be true, walk away.”
Sarah Nicholson, operations manager of JustMoney, says, “With online crimes such as banking fraud, phishing scams, and malware attacks on the rise, staying vigilant is essential. Protecting yourself starts with awareness. Regularly monitor your bank statements, check debit orders, and scrutinise credit card charges.
“Remember that your devices are a gateway to your finances, so keep them secure and never let your guard down. In today’s digital age, proactive steps are your best defence against cyber threats.”
If you suspect you’re a victim of a cybersecurity attack, report any suspicious transactions or compromised accounts to your bank immediately, advises Nicholson. Contact your internet service provider to help secure your internet connection or devices if they’ve been compromised.

Related posts

The South African Way of Saving: Old-School Stokvel Traditions Meet New-School Thinking

iMaliMatters

Video – Somizi’s close friend, TT Mbha tests positive for Coronavirus

iMaliMatters

Interest Rates Remain High for Too Long, Says Seeff

iMaliMatters