Sanral is now responsible for paying the costs of resuming normal service.

JOHANNESBURG, SA, SOUTH AFRICA, January 24, 2014 /EINPresswire.com/ -- In early January the South African National Roads Agency (Sanral) learned that its new e-toll website was exposing its users’ personal data to hackers. That personal data included 1 million e-tag users’ full names, car registration numbers, mobile phone numbers, physical addresses, PINs and other sensitive information. The security flaw existed despite the fact that e-toll costs the company R25 million per month in operating costs.

The Sanral users’ data was breached as a result of weak security measures, and as a result the company is now responsible for identifying how many users were affected as well as paying the costs of resuming normal service. With the high possibility of password re-use in bank accounts, home alarms, mobile phones etc., Sanral users face a potentially huge cyber security attack. For Sanral itself the consequences are equally damaging: a DDoS attack of this kind will provoke significant adverse media coverage and a high volume of customer complaints and compensation claims, which will cause the company to incur severe financial losses.

According to the 2012 Symantec cybercrime report there is a significant amount of cybercrime in South Africa: 70% of South Africans have been victim of cybercrime and risky behaviour compared to 50% globally.
Having solid information security controls in place is crucial for organisations like Sanral. IT Governance SA, the global leader in information security and ISO27001 compliance expertise recommends all South African companies implement a robust Information Security Management System (ISMS) and protect themselves from cyber-attack while there is still time.

ISO27001 is the best-practice specification for an ISMS. The standard helps companies protect business, improve efficiency, identify vulnerabilities, and also strengthen and develop information security best practice. The ISO27001 Certified ISMS Lead Implementer Online training course delivers a comprehensive education in ISO27001 implementation. For more information contact us on +27 (0) 87 550 2768.

Ilenia Vidili
IT Governance Ltd
08450701750
email us here

Legal Disclaimer:

EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.