Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      Home affairs under fire

      24 June 2025

      Samsung to unveil new folding phones at July event

      24 June 2025

      Capital Appreciation banks on payments to offset software slump

      24 June 2025

      Crypto is becoming a ‘practical payment method’ in South Africa

      24 June 2025

      Siemens is battling Big Tech for AI supremacy in factories

      24 June 2025
    • World

      Mira Murati’s Thinking Machines hits $10-billion valuation

      24 June 2025

      Watch | Starship rocket explodes in setback to Musk’s Mars mission

      19 June 2025

      Trump Mobile dials into politics, profit and patriarchy

      17 June 2025

      Samsung plots health data hub to link users and doctors in real time

      17 June 2025

      Beijing’s chip champions blacklisted by Taiwan

      16 June 2025
    • In-depth

      Meta bets $72-billion on AI – and investors love it

      17 June 2025

      MultiChoice may unbundle SuperSport from DStv

      12 June 2025

      Grok promised bias-free chat. Then came the edits

      2 June 2025

      Digital fortress: We go inside JB5, Teraco’s giant new AI-ready data centre

      30 May 2025

      Sam Altman and Jony Ive’s big bet to out-Apple Apple

      22 May 2025
    • TCS

      TechCentral Nexus S0E3: Behind Takealot’s revenue surge

      23 June 2025

      TCS | South Africa’s Sociable wants to make social media social again

      23 June 2025

      TCS+ | AfriGIS’s Helen Hulett on how tech can help resolve South Africa’s water crisis

      18 June 2025

      TechCentral Nexus S0E2: South Africa’s digital battlefield

      16 June 2025

      TechCentral Nexus S0E1: Starlink, BEE and a new leader at Vodacom

      8 June 2025
    • Opinion

      South Africa pioneered drone laws a decade ago – now it must catch up

      17 June 2025

      AI and the future of ICT distribution

      16 June 2025

      Singapore soared – why can’t we? Lessons South Africa refuses to learn

      13 June 2025

      South Africa risks being left behind as stablecoins reshape global finance

      6 June 2025

      Beyond the box: why IT distribution depends on real partnerships

      2 June 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CambriLearn
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Opinion » Are banks doing enough to secure your data?

    Are banks doing enough to secure your data?

    By Schalk Nolte18 April 2016
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp

    schalk-nolte-180Despite some consolidation in the African banking market, most of the banks we speak to remain confident about future opportunities on the continent. However, we have noticed security steadily making its way towards the top of the agenda for bank executives, and rightly so.

    Africa’s relative lack of infrastructure is both a blessing and a curse for banks. While access to traditional services is still a challenge, innovation in technology can offer big opportunities. Mobile has become the de facto means of banking in many parts of Africa and, as mobile penetration — particularly smartphone penetration — increases, this is allowing banks to connect with more of the population than ever before, and to do so in a more targeted, personal way.

    A study looking at trends in banking in sub-Saharan Africa, released in June 2015 by the European Investment Bank, noted that the region leads the world in mobile money accounts. Although only 2% of adults worldwide have a mobile money account, in sub-Saharan Africa, the figure is 12%. Although the base is still low, financial inclusion through mobile is growing fast.

    While this is encouraging for the continent and the banks involved, banking CEOs are increasingly concerned about systemic risk and, more importantly, about the growing risk of cybercrime.

    The Kenyan government alone is losing KSh5bn (R725m) yearly on cybercrime and the number is expected to grow. In fact, in March last year, 79% of African banking executives surveyed by PwC saw cyber risks as an inhibitor to growth.

    This is not surprising. Globally, security is too often seen as a grudge purchase, and is brought in as a last resort and, even worse, often after a critical breach has already taken place. This can cause serious reputational damage to the banking and payments ecosystems.

    Complacency around the security technology employed to authenticate a customer in particular is still rife. Despite all the international best practice, many banks still seem comfortable with using one-time password (OTP) technology as their primary means of authenticating their customers. Technology, one must add, that is already decades old.

    Back in 2012, Australian mobile operators warned their local banks that SMS was not secure and urged them to re-look at how they protect their customers. At the time, Communications Alliance CEO John Stanton said it plainly: “SMS is not designed to be a secure communications channel and should not be used by banks for electronic funds transfer authentication.”

    This is not the end of the challenge. Many banks have shifted to two-factor authentication (where users have a password and make use of a token or phone as the second factor), but Gartner warned back in 2009 that any two-factor authentication relying on a browser can be beaten. The company went on to suggest banks make use of a fraud prevention approach that uses stronger authentication, fraud detection and out-of-band transaction verification.

    Over the years, there has been a marked rise in man-in-the-middle attacks and these are receiving particular attention from African security analysts. These are best described as attacks criminals designed to secretly intercept and possibly tamper with messages between two parties who believe they are communicating only with one another. Many unsuspecting banking clients have become victims of phishing attacks through clicking e-mail links, downloading fake or altered mobile apps or through the use of unsecured public Wi-Fi connections.

    cybercrime-640

    This is a real challenge for banks. They do work to educate their clients on safer browsing habits, but this is simply not enough. Banks must take responsibility for securing financial or personal data. The same is, of course, true for all organisations that hold sensitive information. Regulations around this are growing incredibly onerous and, if companies can’t guarantee they are protecting the consumer, they will be subject to very hefty penalties.

    Not only a compliance challenge

    If banks want to improve their bottom line, they must own the channel through which they communicate with their clients. This channel is the proverbial goose that lays the golden egg. In a downturn economy especially, financial institutions are developing and rolling out incredibly innovative new products. This is all pointless, however, if the end user — the client — doesn’t trust your technology enough to complete a transaction.

    Criminals are constantly evolving and refining the ways they access data and funds. If banks want to ensure they can leverage the mobile channel for increased profits, they cannot afford to be complacent about security. Criminals are thinking three steps ahead. Shouldn’t our banks be doing the same for their clients?

    • Schalk Nolte is CEO of Entersekt


    Entersekt Schalk Nolte
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleLet them eat cake (but not broadband)
    Next Article Inside Africa’s electricity crisis

    Related Posts

    Entersekt goes global with latest acquisition

    12 December 2023

    Why your customers should be given control over their data

    1 June 2023

    Looming authentication deadline could put local merchants at risk

    21 September 2022
    Company News

    TechCentral: South Africa’s premier platform for ICT leaders

    24 June 2025

    Section 18A deductions and BEE points – a strategic choice for business compliance in 2025

    24 June 2025

    Huawei Watch Fit 4 Series: beauty, brains and a battery that won’t quit

    24 June 2025
    Opinion

    South Africa pioneered drone laws a decade ago – now it must catch up

    17 June 2025

    AI and the future of ICT distribution

    16 June 2025

    Singapore soared – why can’t we? Lessons South Africa refuses to learn

    13 June 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.