Protect your travel agency! Cyber Attacks hit SA!

A cyber security expert has warned that a global cyber ransom attack has spread to South Africa this week.

”We need people to understand that they must not open mail or attachments from senders they do not know,” Roi Shaposhnik of Johannesburg-based Gold N’ Links Cyber, was quoted in News24.

Describing it as the biggest cyber-attack in history, Shaposhnik said syndicates around the world targeted a weak spot in Microsoft security updates which lead to a massive crash. This type of malware that encrypts a user’s data, then demands payment in exchange for unlocking the data.

Microsoft released a patch (software update that fixes the problem) for the flaw in March, but computers that have not installed the security update remain vulnerable.

The ransomware demands users pay $300 (R3 924) worth of cryptocurrency Bitcoin to retrieve their files, though it warns that the “payment will be raised” after a certain amount of time. Translations of the ransom message in 28 languages are included. The malware spreads through email.

How can you protect your computer and your travel agency from cyber-attacks and hackers?

Be careful on social media

Shaposhnik warns people should be cautious on social media because it is not uncommon to track Twitter or Facebook posts to tailor an attack on those platforms. He urged Facebook and Twitter users to keep their accounts closed to all but friends they know, and to not open links from unknown sources.

Be wary of unknown e-mails

Everyone should take extra precaution when opening emails from unfamiliar senders. This includes coupons, vouchers and any discount emails that you were not previously aware of.

Get knowledgeable

Educating the entire company on the different types of cyber risks (e.g. spearphishing, vishing, typosquatting, etc.) goes a long way to protecting your travel agency. This training should be ongoing, as the security threat landscape is constantly changing.

Create SOPs

Create standard operating procedures (SOPs) to minimise the threat of phishing scams and to identify legitimate requests.

Install spam filters

Have strong spam filters in place to minimise inbound malicious emails.

Update software

Keep anti-virus software and firewalls updated 24/7 since hackers are always looking for new ways to infiltrate your computer and network.

Conduct tests

Conduct random testing with mock phishing scenarios.

Back up regularly

Be sure to backup on a regular basis to ensure you always have your files stored on the cloud or an extra external platform.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
NID	6 months	This cookie is used to a profile based on user's interest and display personalized ads to the users.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Cookie	Duration	Description
90218deb572a2b04751fc742ff2b5b54	7 days	No description
yt-remote-connected-devices	never	No description available.
yt-remote-device-id	never	No description available.

AASA | ABTA | ANTOR | BARSA | FEDHASA | SATSA | SAVRALA | TBCSA | WTAAA | Other Useful Links | SA Coronavirus

AASA | ABTA | ANTOR | BARSA | FEDHASA | SATSA | SAVRALA | TBCSA | WTAAA | Other Useful Links
| SA Coronavirus