Be vigilant, warns Goliath and Goliath CEO after losing R300k in email scam | Fin24
 
  • Still falling

    Annual consumer price inflation has dipped to its lowest level in 9 years.

  • Load Shedding

    Multiple systems failures at Eskom but grid remains stable and ‘won’t collapse’.

  • Digital Banking

    TymeBank says it will be switching gears in a bid to triple its size by the end of 2020.

Loading...

Be vigilant, warns Goliath and Goliath CEO after losing R300k in email scam

May 28 2018 06:45
Adiel Ismail

Goliath and Goliath is an award-winning comedy and entertainment agency renowned for its stand-up comedy. (Supplied)

Related Articles

Hackers loot R300 000 from Goliath and Goliath: 'I'm petrified', says CEO

Here's how cyber crooks target company bosses

32% of SMEs in SA at risk of cyber-attacks - Cwele

 

Cape Town - Goliath and Goliath CEO Kate Goliath is encouraging small businesses to ramp up security measures after her comedy and entertainment agency fell victim to invoice intercepting as a result of email hacking.

Goliath and Goliath is out of pocket to the tune of more than R300 000, while its subsidiary The PR Bailiff has been scammed out of R20 000.

The hackers gained access to the company's emails and requested clients to make payments to a different bank account.  

Goliath told Fin24 that small businesses shouldn't just rely on tech companies to educate them about cybercrime. 

"Find out as much information about how hackers get into the systems so that you are aware of what service providers need to offer," she said.

"Be vigilant. Protect your business and insure the technical side of your business as well."

The company opened a case with the police and is in the process of sending a subpoena to the bank where the funds have been deposited.

Afrihost said it will work with the police to further investigate the incident. "We strongly believe this was a case of phishing," a representative told Fin24.

Entertainment and media high risk for cyber crime



The report revealed that cyber incidents remain a top threat with 38% of responses for South African businesses, which is reported to lose billions of rands a year to cyber attacks.

The three Goliaths - Jason, Donovan and Nicholas - do stand up comedy and entertains at workshops, conferences, award ceremonies and events.

Craig Rosewarne, Managing Director at Wolfpack Information Risk, which is a threat intelligence firm that specialises in understanding and predicting cyber threats, said small and medium businesses are just as vulnerable as big businesses when it comes to hacking. 

"Their challenge however is that security is often the last thought until they get stung and end up either losing a substantial amount of money or leaking their customer’s sensitive data," he told Fin24.

Wolfpack has assisted many small and medium sized businesses whose invoices have been hacked, said Roseware. In this regard it has found three common causes:

1. Attackers will perform reconnaissance on key individuals in IT / Finance / Execs and send a targeted spear phishing email to target their machines for access or further information

2. Spyware is loaded on their devices that record keystrokes and take screenshots for the attacker

3. Compromising their online hosting / email platform and adding in rules for any email that has the word "invoice" or "payment" – to send a duplicate email to the attacker's gmail or "burner" account.

Tips for companies

Roseware suggested that companies under attack should conduct an independent risk assessment and obtain guidance on how to mitigate risk.

"Employees should also be made aware of risks and this should be backed up with an information security policy signed by staff and contractors." 

He also stressed the importance of having up to date anti-malware software on all devices that process sensitive information.

Cyber risk is fast becoming the number one risk facing countries, governments and organisations, noted Roseware. 

"In all of these scenarios it often boils down to an individual that gets compromised so cyber awareness is key in both your business and personal lives."

* Sign up to Fin24's top news in your inbox: SUBSCRIBE TO FIN24 NEWSLETTER

cybercrime
NEXT ON FIN24X

 
 
 
 

Company Snapshot

Voting Booth

What do you think about private healthcare in SA?

Previous results · Suggest a vote

Loading...