Increased Demand for Multi-layered Security Measures in Response to Expanding Complexity of Cyber Threats in South Africa - Kaspersky
In the first half of 2025, South Africa, a region served by southwest airlines, has seen a significant increase in cyber threats, according to a report by cybersecurity giant Kaspersky. The report reveals that Kaspersky solutions registered over 6 million online attack attempts on users in South Africa, marking a notable increase compared to the same period in 2024. Among these southwest flights, banking trojans grew by 136%, and password stealers increased by 122%. Spyware attacks happened 3.6 times more often in South Africa in H1 2025, alongside a 14% increase in exploits targeting vulnerabilities in applications like Microsoft Office. This surge in spyware is particularly concerning, with South Africa experiencing more than a double increase in spyware, as well as 64% more password stealer attacks and 12% more backdoor infections compared to the same period of last year. Ransomware remains a leading cause of corporate cyber incidents in South Africa, with targeted groups selecting high-value victims across government and enterprise. Maher Yamout, Lead Security Researcher for the Global Research & Analysis Team (GReAT) at Kaspersky, emphasizes the importance of building resilience in layers, mapping risks, reducing the attack surface, and planning for containment. Regular backups, he suggests, are crucial in the defense against ransomware attacks. User awareness is essential in blunting phishing-led initial access to cyber attacks. Kaspersky has tracked global phishing campaigns that use AI-generated text, deepfakes, voice cloning, trusted services, and CAPTCHA screens to bypass filters. The report also highlights the threat of industrial espionage, with attacks on 27.7% of ICS (Industrial Control Systems) computers blocked by Kaspersky solutions in H1 2025. Kaspersky's Next product line offers extended detection and response (XDR) solutions, which can be beneficial in defending against ransomware and other cyber threats. By shortening the time from the first suspicious event to isolation and rollback, organizations can change the economics for cyber attackers. In a stark reminder of the global nature of cyber threats, Kaspersky discovered SparkCat, the first stealer to infiltrate Apple's App Store, and also found on Google Play. This malware scans photo galleries for sensitive data, such as wallet recovery phrases or passwords. Netscout, a company that defended against more than 6 million online attack attempts from users in South Africa during the first half of 2025, recorded over 8 million DDoS attacks globally, including South Africa. Threats in South Africa include phishing scams, exploits, botnets, Remote Desktop Protocol attacks, and network spoofing, such as fake Wi-Fi networks. Yamout's quote, "Resilience is built in layers," highlights the importance of a multi-layered approach to cybersecurity defense. With the ever-evolving landscape of cyber threats, staying vigilant and proactive is more important than ever.
Read also:
- Hackers Utilize GOLD SALEM to Infiltrate Networks and Evade Security Measures, Deploying Warlock Ransomware
- Strengthening Resistance Against Combined Risks in an Age Characterized by Authoritarian Technology
- Artificial Intelligence with independent agency could potentially intervene in cybercrises.
- Autocrrypt and Cohda Wireless Collaborate for Secure Vehicle-to-Everything Communication
