Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      Siemens is battling Big Tech for AI supremacy in factories

      24 June 2025

      Tesla shares soar after first robo-taxi rides hit the road

      24 June 2025

      ‘System offline’ scourge to end, says Schreiber – but industry must pay

      23 June 2025

      Why the spectrum gold rush may soon be over

      23 June 2025

      Tech stability key to getting South Africa off damaging financial grey list

      23 June 2025
    • World

      Mira Murati’s Thinking Machines hits $10-billion valuation

      24 June 2025

      Watch | Starship rocket explodes in setback to Musk’s Mars mission

      19 June 2025

      Trump Mobile dials into politics, profit and patriarchy

      17 June 2025

      Samsung plots health data hub to link users and doctors in real time

      17 June 2025

      Beijing’s chip champions blacklisted by Taiwan

      16 June 2025
    • In-depth

      Meta bets $72-billion on AI – and investors love it

      17 June 2025

      MultiChoice may unbundle SuperSport from DStv

      12 June 2025

      Grok promised bias-free chat. Then came the edits

      2 June 2025

      Digital fortress: We go inside JB5, Teraco’s giant new AI-ready data centre

      30 May 2025

      Sam Altman and Jony Ive’s big bet to out-Apple Apple

      22 May 2025
    • TCS

      TechCentral Nexus S0E3: Behind Takealot’s revenue surge

      23 June 2025

      TCS | South Africa’s Sociable wants to make social media social again

      23 June 2025

      TCS+ | AfriGIS’s Helen Hulett on how tech can help resolve South Africa’s water crisis

      18 June 2025

      TechCentral Nexus S0E2: South Africa’s digital battlefield

      16 June 2025

      TechCentral Nexus S0E1: Starlink, BEE and a new leader at Vodacom

      8 June 2025
    • Opinion

      South Africa pioneered drone laws a decade ago – now it must catch up

      17 June 2025

      AI and the future of ICT distribution

      16 June 2025

      Singapore soared – why can’t we? Lessons South Africa refuses to learn

      13 June 2025

      Beyond the box: why IT distribution depends on real partnerships

      2 June 2025

      South Africa’s next crisis? Being offline in an AI-driven world

      2 June 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CambriLearn
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Information security » Malicious hackers turning their sights on South Africa’s government

    Malicious hackers turning their sights on South Africa’s government

    The South African government has become a major target for global threat actors, according to a new report.
    By Staff Reporter4 May 2023
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp
    The Union Buildings, the seat of government

    The South African government has become a major target for global threat actors, with less of their focus now on the private sector, according to findings in a new Trellix cyber threat intelligence briefing on South Africa.

    Threat actors exploit covert infiltration, user-carried USB devices and vulnerabilities in intermediary financial systems to breach security. The data, measured and recorded by Trellix’s research team and cyber threat management engineers, showed that global threat actors are targeting South African government systems.

    Government now attracts more than a third of all online attacks, with the education sector a distant second, followed by financial services, utilities, wholesale, media, consumer products and the general services sector.

    Government now attracts more than a third of all online attacks, with education a distant second

    “With the threat landscape constantly changing, and threat actors adapting their tactics daily, organisations large and small must also adapt their cybersecurity strategies to keep in step with the increasingly automated, smart tools deployed by threat actors from inside and outside the country,” said Carlo Bolzonello, country manager for Trellix South Africa.

    “What we do know is that although it may be growing at a very slow pace, the South African economy is quickly adopting more advanced technology across commerce, service delivery and communication. This transition leaves gaps of exposure for various groups to test weakness left open, as old systems make way for more modern ones.”

    Top attacks launched by threat actors during 2023 included Mustang Panda, APT40, Backdoor Diplomacy, ATP10, Lazarus, Winnti Group, Naikon, Vice Society and FIN7.

    Notable attacks observed were from:

    • UNC4191, a cyber espionage operation in Southeast Asia, leveraging USB devices carried by users as the initial infection point.
    • Advanced persistent threats – APT27, APT39, APT28, APT41 – which are typically nation state-backed groups gaining unauthorised access to computer networks, remain undetected for long periods while attackers mine highly sensitive information.
    • Common Raven, which commonly targets the Swift payment infrastructure utilised by major financial institutions. – © 2023 NewsCentral Media

    Get TechCentral’s daily newsletter



    Carlo Bolzonello Trellix
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleLoad shedding takes a big toll on Pick n Pay
    Next Article India finds itself at the centre of a global war for AI talent

    Related Posts

    Government main target of cyberattacks in South Africa

    8 August 2023
    Company News

    IoT connectivity management in South Africa – expert insights

    23 June 2025

    Let’s reimagine Joburg using the power of tech, data and AI

    23 June 2025

    Netstar doubles down on global markets while backing SA growth

    23 June 2025
    Opinion

    South Africa pioneered drone laws a decade ago – now it must catch up

    17 June 2025

    AI and the future of ICT distribution

    16 June 2025

    Singapore soared – why can’t we? Lessons South Africa refuses to learn

    13 June 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.