Monday, September 29, 2025
23.7 C
Lagos

Inside the Mind of a Cyber Criminal!

 
Cyber criminals come in many different flavours, but the majority of them are in it for one thing: financial pay-off. They want the money that comes with offering their tools or services, selling stolen data, extortion like ransomware or plain fraud. And they all have one thing in common – your organisation is on their radar.

Which is why, says Anna Collard, SVP Content Strategy and Evangelist at KnowBe4 Africa it is critical to understand how cyber criminals operate, the tools they use and the approaches they take to embed robust security within the organisation.
“With ransomware going rampant and victim organisations paying up to millions of U.S. dollars to the extortionists, this problem is just going to get worse. The U.S. government recently announced that ransomware is a national cyber-security challenge and that there will be serious implications for anyone attacking the United States or their critical infrastructure.
This may lead more criminals to shift their attention towards the emerging economies like Africa, where we do not have the government’s support or capacities to stop and prosecute cyber criminals, making it a safer place to operate,” says Collard.
Social engineering or people hacking is a popular way to distribute ransomware – predominately by tricking people into falling for their phishing scams.
“Another technique to be aware of is password spraying,” she explains. “This is when the bad actor selects a common password, like the organisation’s name, followed by the year, and tries it against every user in the organisation. They scrape names of employees from LinkedIn and then using this information try the possible password against the list of names. Then it keeps on cycling until it hits a winning entry. This is a solid case for ensuring that every single employee uses proper passwords or a password manager and multi-factor authentication where possible.
“This level of attack really underscores how important it is to undertake consistent employee training and security skills development,” says Collard. “No matter how secure your perimeter, no matter how much money is spent on high-end security systems, one poor password can open the doors to the threat actors.”
Multi-factor authentication and robust training are not just invaluable for employees in the office, they are even more critical today as people work from home and multiple locations – particularly as employees migrate to coffee shops for power and Wi-Fi during load-shedding. Public Wi-Fi is wide open and home networks with poor passwords or out of date software are open doors.
“It is also really important to make sure that employees use a VPN, although that is also not a guaranteed protection” says Collard as a recent report by the Orange Cyber Defense team explained.

“With home routers being vulnerable due to people not configuring them correctly or updating them, it might be worthwhile sending pre-configured routers and firewalls to employees’ homes, especially for those who access highly confidential information.”
Another challenge for the organisation is keeping up with vulnerabilities and patch management, which is a complicated task in bigger environments.
“Leading hackers and experts like Kevin Mitnick are drawing lines under the importance of putting people’s understanding of these threats at the forefront,” says Collard. “Make sure that passwords are secure, that they are not stored in diaries or on open platforms like Slack or Google Hangouts, that they understand how to identify social engineering attacks and keep security hygiene at the forefront of all communication. People need to know what is out there and that they have the skills to play an important role in protecting themselves and the organisation.”
Today, the threat actors are organised and well paid. They benefit immensely from their pursuit of vulnerabilities, simple mistakes and human error.

Organisations have to sit on the sharp end of the security stick with robust monitoring and detection systems, clear policies, consistent training and security boundaries.

spot_img
spot_img

Hot this week

AIICO Deepens Bond with Retirees, Holds Annuity Forum in Lagos, PH

Mr. Gbenga Ilori, Head, Retail Business at AIICO, in...

Sovereign Trust Insurance Holds 30th AGM

L-R: Eric Balogun, Independent Director, Emi Faloughi, Director, Kayode Adigun,...

Unity Bank Shareholders Approve Merger with Providus Bank

  EGM: From left: Mr. Usman Abdulkadir, Executive Director, Risk...

NNPCL: Ogoni Re-entry is a Beacon of Reconciliation through Collaboration

The re-entry into Ogoniland marks a historic turning point...

NLNG, NCDMB Celebrate 122 Graduates of Train 7 HCD Training Program

NLNG in collaboration with the Nigerian Content Development and...

Topics

e-Dividend: SEC Assures Investors on N8Obn Unclaimed Dividend

Determined to eradicate the incidence of unclaimed dividends in...

Nigeria Leads Africa Hotel, Tourism Sector Growth

The hotel and tourism industry in Africa is beginning a period of sustained growth, according to the sector’s leading experts gathered at the Africa Hotel Investment Forum in Addis Ababa, Ethiopia. The conference heard that inward international flights were recovering after being hit by the Ebola outbreak. And the hotel sector reported significant expansion, as well as increased visitor numbers, boosted by demand from African business.

Stanbic IBTC Bank PMI: Output Growth Accelerates to Fastest in a Year

February data pointed to improved growth momentum in the...

Royal Exchange Reports N1O.7bn Premium Income in 2O15

Royal Exchange Plc has announced that it generated a...

African Business Leader, Tony Elumelu, to Discuss Priorities at UNGA 2024

African philanthropist and business leader, Tony Elumelu, will make...

NCC Commended as AfricaNXT 2023 Begins in Lagos

The Nigerian Communications Commission (NCC), at the opening of...

‘How Soybeans Will Reduce Malnutrition in Nigeria’

Professor Ibiyemi Olayiwola, a nutritionist, says soybean has the...

CIIN Unveils Insurance Broking Book to Spur Professionalism

Mr. Edwin Igbiti President/Chairman of Council Chartered Insurance Institute of Nigeria...
spot_img

Related Articles

Popular Categories

spot_imgspot_img