Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News
      co.za domain fees to rise well above inflation

      co.za domain fees to rise well above inflation

      17 July 2026
      Uber's mega-deal hands Prosus a R40-billion exit

      Uber’s mega-deal hands Prosus a R40-billion exit

      16 July 2026
      The plan to stop AI from breaking the world - Google DeepMind CEO Demis Hassabis. Image: John Sears

      The plan to stop AI from breaking the world

      16 July 2026
      Eskom appoints group executive for renewable energy - Rivoningo Mnisi

      Eskom Green cleared for take-off

      16 July 2026
      Selling vapour is corporate suicide in slow motion - Jannie van Zyl

      Selling vapour is corporate suicide in slow motion

      16 July 2026
    • World
      Swingeing jobs cuts at Microsoft's Xbox unit

      Swingeing jobs cuts at Microsoft’s Xbox unit

      6 July 2026

      SK Hynix ends Samsung’s 26-year reign at the top

      22 June 2026
      Google on the hook for what its AI tells users, court rules

      Google on the hook for what its AI tells users, court rules

      15 June 2026
      How Russians juggle VPNs to outwit the Kremlin

      How Russians juggle VPNs to outwit the Kremlin

      15 June 2026
      Amazon CEO flagged Anthropic AI risks to Washington - Andy Jassy

      Amazon CEO flagged Anthropic AI risks to Washington

      14 June 2026
    • In-depth
      AI boom sparks rally, frenzy and fear

      AI boom sparks rally, frenzy and fear

      11 June 2026
      Every plug-in hybrid on sale in South Africa, ranked by price - Lamborghini Temerario

      Every plug-in hybrid on sale in South Africa, ranked by price

      7 June 2026
      What Wi-Fi 8 will mean for wireless networks

      What Wi-Fi 8 will mean for wireless networks

      1 June 2026
      Alfa's electric rebel - Alfa Romeo Junior Elettrica Veloce

      Alfa’s electric rebel

      29 April 2026
      Africa switches on as Europe dims the lights

      Africa switches on as Europe dims the lights

      9 April 2026
    • TCS
      Watts & Wheels S1E7: 'Ferrari's EV breaks the internet'

      Watts & Wheels S1E7: ‘Ferrari’s EV breaks the internet’

      8 July 2026
      TCS+ | How Tracker is turning vehicle data into business strategy - Silvia Schollenberger

      TCS+ | How Tracker is turning vehicle data into business strategy

      1 July 2026
      TCS+ | IBM Bob: an AI-powered 'development partner' for the enterprise - David Spurway

      TCS+ | IBM Bob: an AI-powered development partner for the enterprise

      30 June 2026
      Watts & Wheels S1E6: 'A flawless Alfa and a bakkie that divides'

      Watts & Wheels S1E6: ‘A flawless Alfa and a bakkie that divides’

      17 June 2026
      Watts & Wheels S1E6: 'A flawless Alfa and a bakkie that divides'

      Watts & Wheels S1E5: ‘A Bentley of the bush and a car that swims’

      8 June 2026
    • Opinion
      The author, Fanie van Rooyen

      South Africa can still catch the AI wave – here’s how

      7 July 2026
      The author, Fanie van Rooyen

      The AI utopia South Africa can’t afford

      1 July 2026
      Selling vapour is corporate suicide in slow motion - Jannie van Zyl

      South Africa’s broadband future is being decided in orbit, not in Pretoria

      30 June 2026
      The author, Pambos Soteriades

      The pivot South Africa’s MVNOs cannot afford to miss

      23 June 2026
      Brazil's online gambling crackdown is a lesson for South Africa

      Brazil’s online gambling crackdown is a lesson for South Africa

      22 June 2026
    • Company Hubs
      • 1Stream
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • Ascent Technology
      • AvertITD
      • BBD
      • Braintree
      • CallMiner
      • CambriLearn
      • CM Telecom
      • Contactable
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • HOSTAFRICA
      • Incredible Business
      • iONLINE
      • IQbusiness
      • Iris Network Systems
      • Kaspersky
      • LSD Open
      • Mitel
      • NEC XON
      • Netstar
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Telviva
      • Tenable
      • Vertiv
      • Videri Digital
      • Vodacom Business
      • Wipro
      • Workday
      • XLink
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Financial services
      • HealthTech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Policy and regulation
      • Public sector
      • Retail and e-commerce
      • Satellite communications
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
      • Watts & Wheels
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Sections » Information security » Cybercrime trends to watch out for in 2024

    Cybercrime trends to watch out for in 2024

    Promoted | A recent Lunch and Learn session with ICTGlobe.com unpacked the cybercrime trends to watch out for in 2024.
    By ICTGlobe.com6 December 2023
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp

    Cybercrime trends to watch out for in 2024The importance of cybersecurity cannot be overstated. As businesses and individuals rely increasingly on digital platforms for communication, commerce and information sharing, the threat landscape grows increasingly broad and complex.

    This is according to ICTGlobe Managed Services MD Jan Hitge, speaking during a Lunch and Learn session held in conjunction with TechCentral recently.

    The aim of the session was to unpack the cybercrime trends to watch out for in 2024. Hitge opened the session by discussing how visibility is key to cybersecurity. “You cannot defend against what you cannot see, which is why visibility is emerging as a critical linchpin when it comes to fortifying defences against cyber threats.”

    Visibility, he said, refers to the comprehensive awareness and understanding of the entire digital environment, encompassing networks, devices, applications and user activities. “Businesses need to understand the pivotal role that visibility plays in crafting robust cybersecurity strategies. Essentially, without a clear and real-time understanding of the dynamic digital landscape, identifying, mitigating and preventing cyber threats becomes an uphill battle.”

    A complex landscape

    Next, First Distribution Microsoft security specialist Sahil Kassie said as the world becomes increasingly connected and digital, cybersecurity is becoming more complex. “As an experienced technology provider, we know how challenging it can be to prioritise where to focus security efforts. Between infrastructure, data, and apps in the cloud, there’s a lot more to protect.”

    Sharing some Microsoft statistics, he said that one hour and forty-two minutes is the median time it takes an attacker to begin moving laterally within a corporate network once a device is compromised, and that 98% of cyberattacks can be prevented with basic security hygiene.

    “You’re only as strong as your weakest link,” Kassie said. “Keeping up with today’s threats means securing every area of vulnerability, including e-mail, identity, endpoint, Internet of Things (loT), cloud and the external attack surface.”

    According to him, there are six things businesses need to know to prevent compromise…

    E-mail remains a top vector

    Firstly, e-mail remains a top attack vector and a focus area for defence. “A mere 72 minutes is the median time it takes an attacker to access private data should someone fall victim to a phishing e-mail.”

    Alarmingly, this year nearly half (45%) of ransomware involved the use of e-mail. Phishing attacks also increased by 61% from 2022 to 2023. “Bad actors are commonly using legitimate resources to carry out their campaigns, making it harder to tell the difference between real and malicious e-mails.”

    Kassie added that using safeguards such as URL checking and disabling macros will help boost an organisation’s security posture. “However, tackling more advanced e-mail threats needs e-mail signals to be correlated into broader incidents. Security professionals need to visualise the attack and understand how malefactors are taking advantage of other parts of the environment to leverage legitimate resources.”

    The expanded identity landscape

    Next, he says the expanded identity landscape is also expanding opportunities for attackers. “We saw 921 password attacks per second in 2023, a 74% increase from the year before, and 93% of Microsoft investigations during ransomware recovery engagement revealed insufficient privilege access and lateral movement controls. Attackers are getting more creative when it comes to circumventing multi-factor authentication and phishing kits have made it even easier to steal credentials.”

    This is why Kassie said the identity attack surface is more than just securing user accounts: access and workload identities need to be covered too. “For instance, attackers frequently gain access to third-party accounts and then use those credentials to infiltrate the cloud and steal data. Often, this is accomplished through workload identities which can be overlooked during permissions auditing.”

    Endpoint blindspots and IoT devices

    Thirdly, hybrid environments and shadow IT have increased endpoint blind spots, he said. “Shockingly, 3 500 is the average number of connected devices in an enterprise that are not protected by an endpoint detection and response agent.”

    Kassie said that as loT devices are proliferating, so are loT threats. “The sheer number of devices in today’s hybrid environments has made securing endpoints more challenging. Unmanaged servers and BYOD personal devices contribute to the shadow IT landscape and are particularly appealing to threat actors. And it only continues to grow.

    In fact, 41 billion loT devices are expected in enterprise and consumer environments by 2025, and 60% of security practitioners say loT and operational technology security is one of the least secured aspects of their infrastructure. “loT devices are an often overlooked endpoint attack vector. Interestingly, as organisations harden routers and networks to make them more difficult to breach, loT devices are becoming a threat target of choice for threat actors.”

    For example, Kassie said an loT device can exploit vulnerabilities to turn loT devices into proxies, by employing an exposed device as a foothold onto the network. “Too often, entities have no visibility into loT devices, which can even contain dangerous vulnerabilities, such as outdated or unsupported software.”

    He added that there are emerging regulations for loT security in various countries but gaining more visibility into all of the business’s attack surfaces is key, and this includes loT devices.

    Securing the cloud

    The next key point is that protecting the cloud is critical, but complex. “A whopping 895 man-in-the-middle phishing attacks are detected per month by Microsoft Defender for Cloud Apps. On average, 84% of organisations that suffered ransomware attacks did not integrate their multi-cloud environments into security operations tooling.”

    Kassie added that companies are increasingly moving infrastructure, application development, workloads, and data to the cloud. This radical shift has increased the number of new attack vectors for malefactors to exploit, with many gaining access through gaps in permissions security.

    “Cloud app development is a top cloud attack vector, as is cloud storage, and sometimes, cloud services providers themselves can be affected. For app development, we recommend embracing a “shift-left” security approach; that is, thinking about security at the earliest phase of app development.”

    An internet-scale challenge

    In ending, Kassie said securing the external attack surface is an internet-scale challenge. “There were 1 613 cyberattack-related data compromises in 2023, which is more than all data compromises reported between 2022 and 2023. In addition, 53% of organisations experienced at least one data breach caused by a third party in that same time frame.”

    Today, a business’s external attack surface spans multiple clouds, complex digital supply chains, and massive third-party ecosystems. “It also extends beyond its own assets and includes suppliers, partners, unmanaged personal employee devices and newly acquired entities.”

    “The bottom line is that the internet is now part of the network, and despite its almost unfathomable size, security teams must defend their organisation’s presence throughout the internet to the same degree as everything behind their firewalls.”

    • Read more articles by ICTGlobe.com on TechCentral
    • This promoted content was paid for by the party concerned
    Follow TechCentral on Google News Add TechCentral as your preferred source on Google


    First Distribution ICTGlobe Jan Hitge Microsoft Sahil Kassie
    WhatsApp YouTube
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous Article‘We can save the SABC and the Post Office’
    Next Article Smart crypto investing with Altify’s Crypto Bundles

    Related Posts

    The plan to stop AI from breaking the world - Google DeepMind CEO Demis Hassabis. Image: John Sears

    The plan to stop AI from breaking the world

    16 July 2026
    AI Barometer: the best AI for every job right now

    AI Barometer: the best AI for every job right now

    13 July 2026
    The author, Fanie van Rooyen

    South Africa can still catch the AI wave – here’s how

    7 July 2026
    Add A Comment

    Comments are closed.

    Company News
    The economy the statistics miss is thriving on Spondo Street - Lesaka Technologies Lincoln Mali

    The economy the statistics miss is thriving on Spondo Street

    16 July 2026
    Biometrics alone won't stop AI-powered fraud - Contactable

    Biometrics alone won’t stop AI-powered fraud

    15 July 2026
    How Paratus and Eutelsat are connecting Southern Africa's mines

    How Paratus and Eutelsat are connecting Southern Africa’s mines

    14 July 2026
    Opinion
    The author, Fanie van Rooyen

    South Africa can still catch the AI wave – here’s how

    7 July 2026
    The author, Fanie van Rooyen

    The AI utopia South Africa can’t afford

    1 July 2026
    Selling vapour is corporate suicide in slow motion - Jannie van Zyl

    South Africa’s broadband future is being decided in orbit, not in Pretoria

    30 June 2026

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Latest Posts
    co.za domain fees to rise well above inflation

    co.za domain fees to rise well above inflation

    17 July 2026
    Uber's mega-deal hands Prosus a R40-billion exit

    Uber’s mega-deal hands Prosus a R40-billion exit

    16 July 2026
    The plan to stop AI from breaking the world - Google DeepMind CEO Demis Hassabis. Image: John Sears

    The plan to stop AI from breaking the world

    16 July 2026
    Eskom appoints group executive for renewable energy - Rivoningo Mnisi

    Eskom Green cleared for take-off

    16 July 2026
    © 2009 - 2026 NewsCentral Media
    Built and maintained by Chronon
    • Cookie policy (ZA)
    • TechCentral – privacy and Popia

    Type above and press Enter to search. Press Esc to cancel.

    Manage consent

    TechCentral uses cookies to enhance its offerings. Consenting to these technologies allows us to serve you better. Not consenting or withdrawing consent may adversely affect certain features and functions of the website.

    Functional Always active
    The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
    Preferences
    The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
    Statistics
    The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
    Marketing
    The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
    • Manage options
    • Manage services
    • Manage {vendor_count} vendors
    • Read more about these purposes
    View preferences
    • {title}
    • {title}
    • {title}