Cybersec executive may 2016 digis

CYBERSECURITY: EXECUTIVE

2016

CYBERSECURITY:

How safe are you online?

THE INVISIBLE DANGERS: Protect the vulnerable and secure your assets FIGHT BACK: SPREAD THE MESSAGE

Stop. THINK. Connect. Department Of Telecommunications & Postal Services

MOVING SOUTH AFRICA TO A HIGHER LEVEL OF INTERNET SAFETY

Department Of Telecommunications & Postal Services CyberSecurity Campaign

Stop. THINK. Connect.

CONTENTS 02

E-IDENTITY Stop. Think. Connect.

03

HOW SERIOUSLY IS SOUTH AFRICA taking CyberSecurity?

04

PROTECTING SOUTH AFRICA AGAINST cyberspace’s invisible dangers

06 RAISING the alarm 08

GETTING THE message across

12

WORKING TOGETHER to make South Africa safer

14

MOVING SOUTH AFRICA TO A higher level of internet safety

16

CYBERSECURITY awareness campaign strategy

Editor Malaika Mahlatsi Art Director Ashley van der Merwe ashley@creativeboost.co.za 073 935 0056 Advertising Sales Tokologo Phetla commodore@thecommodoremedia.com 073 684 8874 Contact Information Physical address: 39 Rivonia Road Building 4, Commerce Square Sandhurst, 2196 (011) 268 0179 / (073) 684 8874 www.thecommodoremedia.com

Printed by Paarl Media

2016

1

CYBERSECURITY AWARENESS

ELECTRONIC IDENTITY MANAGEMENT POLICY

(NE-IDMP) The DTPS has developed a draft e-identity management policy

O

utcome 3 of Governments deliverable agreement of 2010 states that, ‘All people are and feel safe in South Africa’. This declaration implied that different government should come up with a mechanism to ensure safety of South Africans, including in cyber space; hence, the development of the National Cybersecurity Policy Framework (NCPF). The NCPF stipulates measures to prevent and combat cyber crime. One of these measures amongst others is the development of and implementation of a National Electronic Identity Management Policy for South Africa. The DTPS is developing this policy at the reuest of the Cyber Response Committee (CRC) of the JCPS Cluster. This policy was initially supposed to be developed by the Home Affairs. The draft policy has been developed and relevant government stakeholders were consulted. The draft has been sent to the Minister for further

2

2016

consultation with Minister of Home Affairs. PURPOSE OF THE POLICY The use of electronic communication (internet) to do business, deliver services or just have normal communication between people has become a common phenomenon. This has also attracted different forms of crime. Therefore, authenticity of persons transacting and maintaining integrity of the transaction or communication is vital, hence there is a need for a system to ensure authenticity of persons communicating or transacting. In this regard, the e-identity policy for South Africa is

a mechanism; 1. To ensure the integrity and reliability of transactions and personal information on electronic communication networks; 2. To the secure data being transmitted and in general to promote trust in the use of ICT’S; 3. To create a systematic, credible and inclusive government led e-identity management system in order to achieve the following: a. Realise e-government; b. Promote innovation in the electric economy; c. Contribute to Cybersecurity; and d. Build confidence and trust in the use of ICT’s.

CYBERSECURITY AWARENESS

HOW SERIOUSLY IS SOUTH AFRICA TAKING CYBERSECURITY? Information technology and communication has changed the world forever. It has brought people and Societies closer together, and in some ways it has driven them apart.

W

e can press a button and follow someone in cyberspace, or tag them in a picture. We can locate a friend or a stranger using an app, and we can conduct business and important financial transactions online. All of this makes our lives a lot easier than it was 20 years ago – but what of the dangers we inherit because of this technology? Restricting or shying away from technology is not the answer, because this is the direction the world is heading – why be left behind? What we can do is educate ourselves and our citizens in South Africa about these pitfalls and sinister elements in society who use technology and more specifically the internet to commit crimes that leave victims hopeless, desperate, destitute or worse.

The key to addressing this problem is a sound strategy that involves all stakeholders in a collective process to address the changes in technology, and by means of a meaningful awareness drive. 2016

3

CYBERSECURITY AWARENESS

PROTECTING SOUTH AFRICA AGAINST CYBERSPACE’S INVISIBLE DANGERS From children engaging on social networks to clients banking online, the dangers lurking within cyberspace represent a clear and present danger to society at large.

T

he CyberSecurity Policy Framework for South Africa has been approved by Cabinet and this will form the foundation of the national effort to identify and combat cyber incidents. The policy indicates that the responsibility for combating cyber incidents and threats is a collaborative activity between the public, private sectors and civil society.

understanding of what these threats are, how safeguards can be developed and used and how monitoring of success will take place.

The Department of Communications (DoC) has been mandated by the National Cybersecurity Policy Framework (NCPF) to develop a CyberSecurity Awareness Strategy, which is intended to raise the awareness of people in South African of the challenges and threats to society brought about by the online environment.

In developing an awareness programme that will educate all South Africans about the dangers presented by cyberspace, it is important to maintain a balance between making the community aware of the dangers that exist and ensuring that people are not deterred from engaging in the electronic environment for the conduct of business and normal social interactions. It is particularly important to educate children and young people about the dangers that exist from misuse of ICTs including social networking sites and similar facilities.

There is a need to secure the business community and society in general against cyber threats and the first step in developing appropriate safeguards is to have a consistent and clear

In developing the awareness strategy, it is important to recognise that the threats raised by the misuse of ICTs are global and, therefore, as far as is practicable, there will be value in

4

2016

taking account of activities that have proved successful in other countries. This is the first awareness strategy for CyberSecurity that the DoC has produced, and will be updated from time to time as the plan set out herein is implemented, and as awareness increases. The development of this strategy is informed by an Environmental Scan that was conducted. The Environmental Scan considered the local context for CyberSecurity and looked at the policy, legal and regulatory framework, as well as the main institutions involved in communicating within government and to the public on aspects of CyberSecurity. It further considered existing CyberSecurity strategies in other jurisdictions namely Canada, Australia, Mauritius, United Kingdom, South Korea and the United States. The positive

CYBERSECURITY AWARENESS

aspects of these strategies have been noted and inform the South African Awareness campaign and approach. The Department of Communications (“DoC”) seeks to be a leader in raising awareness of the challenges and solutions presented by cyberspace to all sectors of people in South Africa. This awareness should then lead to a reduced impact of cyber incidents on the social and economic life of people in South Africa and other countries with which electronic

transactions occur. The vision can be encapsulated in the following statement: “South Africa will be a Cyber Secure Society acknowledging the importance of cyberspace to people in South Africa and support the security of people, businesses and institutions against cyber incidents.” The Mission Statement for the CyberSecurity awareness initiative is as follows: “To ensure that people in South African are knowledgeable about

cyberspace, by increasing their awareness of CyberSecurity as a concept, and its policies and practices. To facilitate the development of a framework that will support the use of effective protective measures and, if these measures fail, enable effective investigation of cyber incidents to take place.” This statement provides the framework for the activities of all elements of the CyberSecurity Awareness Campaign overseen by the public / private sector Working Group. 2016

5

CYBERSECURITY AWARENESS

RAISING THE ALARM South Africa has devised a strategy to make its citizens aware of the risks lurking within cyberspace, and to present measures to help them steer clear of such crimes.

T

he DoC’s goals are to, with the support of other affected stakeholders, achieve/fulfill the mission and vision through:

GENERAL AWARENESS – Awareness of CyberSecurity risks • Messaging-- understanding the challenges; understanding stakeholders and roleplayers

1. R aising awareness among the South African public of the risks that may be associated with online activities, the measures that can be put in place and steps taken to mitigate the risks and ensure a secure experience online

PERSONAL AND CORPORATE RESPONSIBILITY – Recognising personal responsibility, acquiring protection tools and knowledge • Messaging - implementing tools and techniques; • Awareness of stakeholders

2. Engaging the public on steps that the government is taking to improve CyberSecurity

ONGOING AWARENESS – Maintaining continuous learning, responding to new and changing threats • Messaging – notification of new threats; notification of appropriate tools, techniques and stakeholders

3. Generate and communicate approaches and strategies for the public to ensure that they are aware of CyberSecurity risks and threats, and strategies to protect themselves It is anticipated that in achieving its goals, through the awareness strategy the South African public’s awareness will be enhanced in a number of stages: 6

2016

The stages are: 1. General Awareness: The messages to be conveyed during this phase will seek to provide the public with a clear and simple understanding of the challenges, as well as an introduction to the key stakeholders and role-players and what they do. A number of carefully constructed messages

will need to be developed and tailored to the target audience. 2. Personal Responsibility: this stage in the awareness campaign can respond to the question “what can I do?” This stage urges the public to take personal responsibility, and the messages would be constructed in a way that also assists the public in acquiring

3. Ongoing Awareness: this stage of the campaign seeks to maintain continuous learning, and to assist the public to respond to new and changing threats. The messaging during this stage is related to the notification of new threats; notification of appropriate tools, techniques and stakeholders. The objectives of developing a CyberSecurity Awareness Campaign linked to the above-mentioned goals include but are not limited to: 1. I dentify cyber incidents and inform people in South Africa of cyber incidents in South Africa (Goal 1); 2. Increase the number of people that are aware of CyberSecurity, including the risks, threats and mitigation strategies 3. Identify international goodpractice and utilize and adapt such practice to meet South African needs (Goal 1, Goal 2, Goal 3) 4. For the public sector to establish partnerships with the Private sector and Civil Society to share ideas on how best to prevent and mitigate cyber incidents in a coordinated manner (Goal 3);

5. To develop awareness mechanisms and interventions that are tailored to the particular needs of specific sections/sectors of the South African population, including (Goal 1, Goal 2, Goal 3): • the general business sector, • financial services sector, • communications services sector, • Government administration (including traditional leaders) • E-government services, • personal usage: focusing

on children and young people including social media and social networking; and • the protection of children. 6. Identify existing initiatives taken in the awareness raising field and align them with planned activities in order to maximize their impact (Goal 3); 7. Create an institutional mechanism for monitoring the delivery of the CyberSecurity awareness message throughout the country (Goal 1, Goal 2, Goal 3).

To create awareness amongst people in South Africa regarding cyberspace

Create institutional mechanism for monitoring messages

Identify existing initiatives and align existing and planned activities

7

1

6

2

5 Develop awareness mechanisms and interventions tailored to needs of specific sections of the SA population

4

Identify and inform people in South Africa regarding cyber incidents;

3

Public sector to establish partnerships with the Private sector and Civil Society to share ideas on prevention and mitigation of cyber incidents;

Identify international good-practice and utilise and adapt such practice to meet SA needs

2016

7

CYBERSECURITY AWARENESS

protection tools and knowledge as well as guidance on implementing them. In this stage awareness/ understanding of the roles of stakeholders is also key. Again, a number of messages will need to be developed and tailored to the target audience.

CYBERSECURITY AWARENESS

GETTING THE MESSAGE ACROSS In a world cluttered with many varied and confusing messages, how will government raise awareness of the dangers of crimes in cyberspace?

T

he CyberSecurity Awareness Strategy should be implemented on a continuous basis over an extended period of time. As such, a number

8

of phases must be implemented. In the short term, the process to be followed in executing the CyberSecurity Awareness Strategy is to define its objectives and

Objectives

Approaches

1. To understand the CyberSecurity environment and to identify the current and forecast threat of cyber incidents in South Africa

Collaboration between 1. Environmental Scan DoC and the key completed and agreed stakeholders representing State and Private sector interests

goals. Phase 1 of the Strategy ‘sets the scene’ in terms of the following process: (some of the objectives have been achieved – dates indicated):

Key Performance Indicators Actions & Target Date 1. Convene meeting in advance of stakeholder consultation to identify the CyberSecurity Framework and agree the relevant elements of the environment (30 April 2012)

2. Identify local and Undertake Benchmarking international goodReport and contributions practice and utilize and from other stakeholders adapt such practice to meet South African needs

1. Completion of Benchmarking Report

1. Prepare report and submit for consideration by stakeholder consultation (1st week May 2012)

3. To develop an engagement and consultation process that enables all players with a vested interest in CyberSecurity to make their views known

1.Initial consultation conference successfully completed;

1. Convene initial stakeholder consultation; (1st week May 2012)

2.Working group convened

2. Identify from the Stakeholder consultation a Public / Private Working Group to provide direction for the Awareness campaign (1st week May 2012)

2016

Communication / consultation exercises should be developed that allow for stakeholder dialogue

3.Provincial events successfully completed;

Approaches

Key Performance Indicators Actions & Target Date 4. Programme of activities developed by provincial Governments

CYBERSECURITY AWARENESS

Objectives

3.Develop countrywide Communication / Consultation Plan – identify national and provincial institutions to take the message to the public (Date to be determined) 4.Identify communications media and formulate media programme (Date to be determined)

4. To develop awareness mechanisms and interventions that are tailored to the particular needs of specific sections of the South African population, including - the general business sector, - financial services, - communications services, - Government administration’ - E-government services, - personal usage focusing on children and young people including social media and social networking;

Collaboration between Public and Private stakeholders at National and provincial levels

1. Preparation of an agreed plan for national and provincial mechanisms and interventions

1. Working Group to meet to consult on and develop the mechanisms for use by national and provincial institutions (Date to be determined)

5. Identify existing initiatives taken in the awareness raising field and align existing and planned activities in order to maximise their impact

Collaboration between all stakeholders to identify their existing and / or planned activities focused on raising awareness

1. Finalisation of catalogue of existing initiatives and alignment with national / provincial awareness plan

1. Working Group to catalogue existing initiatives with cooperation / input from all identified stakeholders (Date to be determined)

2016

9

CYBERSECURITY AWARENESS

Objectives

Approaches

Key Performance Indicators Actions & Target Date

6. Public sector to Expand the mandate establish partnerships of the Public/ Private with the Private sector working Group and Civil Society to share ideas on prevention and mitigation of cyber incidents

1.Inclusive forum created 2. Transparent approach 3.Consistent and updated analysis of cyber incidents

The Public / Private working Group to formulate and agree on the partnership approach

7. Create an institutional mechanism for monitoring the delivery of the CyberSecurity awareness message throughout the country

1. Plan agreed by all stakeholders and published for stakeholders to use.

1. The Public / Private Working Group to formulate and agree the monitoring framework (Date to be determined)

Develop a monitoring framework that identifies key metrics against which the awareness programme will be measured.

In order to implement the strategy it is critical to segment the market in order to ensure the messages created will be targeted, appropriate and relevant. The most efficient manner to segment the market for the purpose of messaging is to start with a broader audience and over time, once general awareness is achieved focus on specific targets. Accordingly, the following market segments have been identified: • People in South Africa (all ages) that are a part of the global cyberspace • Government (Public sector) • Business (Private sector ) • Civil Society • Parents • Children (School going and otherwise) Messages need to be designed to reach and influence the target market as defined above with 10

2016

specific focus on the major CyberSecurity concern for the market segment. The message should consider: (1) the particular audience; (2) the various types of cyber incidents. An analysis of the CyberSecurity from a legal, policy and regulatory framework globally, revealed that cyber incidents can be divided into 5 broad groups to include the following: • CyberSecurity related to promoting Confidentiality, Integrity and Availability of Computer Data and Systems, i.e. awareness of and prevention of o Illegal Access (Hacking, Cracking) o Data Espionage o Illegal Interception o Data Interference

o System Interference • CyberSecurity related to access to Content, i.e. awareness of and protection from: o Erotic or Pornographic Material (excluding Child Pornography) o Child Pornography o Racism, Hate Speech, Glorification of Violence o Religious Offences o Illegal Gambling and Online Games o Libel and False Information o Spam and Related Threats o Other forms of Illegal Content • CyberSecurity related to Copyright and Trademarks, i.e. awareness of and protection from: o Copyright – related Offences o Trademark – related Offences

CYBERSECURITY AWARENESS

Global strategic report available at http://www.itu.int/osg/csd/ cybersecurity/gca/global_ strategic_report/index.html • CyberSecurity related to potential Computer Related Offences, i.e. awareness of and protection from: o Fraud and Computerrelated Fraud o Computer –related Forgery o Identity Theft o Misuse of Devices • CyberSecurity awareness of and protection from Combination Offences such as: o Cyber terrorism o Cyber warfare

o Cyber Laundering o Phishing An important issue in preparing and delivering any messages designed to raise awareness of CyberSecurity, is to make clear and simple enough to be understandable by all. Keep messages plain and simple: • Messages must be consistent and related so that there is a consistent, progressive buildup of understanding; • Messages must be persistent and part of a sustained campaign not “one-off” activities; • Messages must be tailored

and focused on the segment of the target audience to whom it is addressed; • A “Cyber Awareness mascot” could be created to make a bigger impact; • “Responsible citizenship” should be a part of the message; • The consequences of actions against CyberSecurity or commission of cyber incidents needs to be clearly articulated in the messages; • Processes and contact information for the following need to be communicated: o Access further information o Reporting of incidents o Complaints 2016

11

CYBERSECURITY AWARENESS

WORKING TOGETHER TO MAKE SOUTH AFRICA SAFER Cyberspace involves many stakeholders, across a variety of sectors. Many of these stakeholders are already involved in a number of initiatives aimed at creating awareness of the issues around CyberSecurity.

T

he effective implementation of the South African CyberSecurity Strategy must involve these stakeholders across business, government , academia and civil society - existing partnerships should be promoted and new partnership forged – importantly this must happen through a coordinated, and formalised working group structure that is facilitated by the DoC. Already, it is understood that the key partners and stakeholders in the awareness-raising strategy include: • Legislators; • Provinces and local Government Authorities; • Traditional leaders; • All levels of Government (see paragraph 10 on Government Partnerships); • Research councils; • Academia; • Any type of service-provider in the ICT space; • Civil society and NGOs; • Information security interest groups; • The Media; 12

2016

• Industry groups – SABRIC, mobile operators etc A critical component of the awareness strategy is thus the formation of the

CyberSecurity working group. The platform for such a group has been established through the Consultation held on the 3rd and 4th of May 2012 and hosted by the DoC.

Government

Business

ICT Industry

CyberSecurity Awareness Strategy Schools

Academia

Civil Society

the relevant stakeholders in order to ensure its implementation and thus the raising of the South African population’s awareness of the challenges and threats to society brought about by the online environment.

segment as set out above will have to identify:

• Use of mass-access platforms such as mobile, broadcast – TV and radio • Use of preferred social media platforms • Monitoring of online platforms and responding to threats – identification and shutting down of websites with inappropriate and criminal content • Development of a Portal • Designation of an Awareness Month or Week • Link into other national campaigns – Women’s month, 16 Days of Activism FOR NO VIOLENCE against Women and Children • Production of booklets, pamphlets and fliers targeted at particular audiences • Link with industry associations (i.e. ISPA, WASPA, SACF) o Government o ICT Industry o Academia o Civil Society o Schools o Business

It is envisaged that from Government, the following departments will be key to the implementation of the awareness strategy:

In addition, the effectiveness of each of the identified areas would have to be monitored and evaluated to inform the review of the approach, as part of step 2 of the process.

PARTICIPATION OF GOVERNMENT As the department mandated by the NCPF to develop a CyberSecurity Awareness Strategy, the Department of Communications is leading the coordination of the strategy and

• Department of Basic and Higher Education • South African Reserve Bank • South African Police Services and other Law Enforcement Agencies • Department of Justice • Department of Trade and Industry • South African Local Government Association (SALGA) Communication and Outreach Specialist media agencies will be required to support the awareness strategy which will leverage all forms of media – both above the line and below the line – as well as conferences and workshops. In view of their existing experience / expertise, the DOC PR / Media Communications Unit should be charged with managing this element of the strategic activities, in collaboration with other Government Departments’ PR units and Private sector representatives. It should be noted that every

• a message, • communications channel and • partnership.

The Strategic Framework was considered by the initial Stakeholder Consultation event on 3 – 4 May 2012. The participants in the consultation made comments on aspects of the strategy with particular reference to on-line child protection, on-line fraud and the recourse available in the event of cyber incidents. The CyberSecurity Awareness Strategy includes the following high-level process to be followed at the outset, as discussed in this strategy document, in order to ensure that the strategy is relevant and targeted: The successful implementation of the process will depend on the availability of resources and the involvement of strategic partnerships. A last critical step in the strategy is to ensure that the strategy is measurable to allow for the monitoring and evaluation of effectiveness in order to inform a future amendment process if required. 2016

13

CYBERSECURITY AWARENESS

Based on an analysis of successful tools used in campaigns in other jurisdictions, and the input from the stakeholder consultations, the strategy should include the following communication approaches:

CYBERSECURITY AWARENESS

MOVING SOUTH AFRICA TO A HIGHER LEVEL OF INTERNET SAFETY The drive to promote a shared responsibility towards CyberSecurity will include educating and empowering South Africans both young and old.

T

he effective implementation of the South African CyberSecurity Strategy must involve these stakeholders across business, government , academia and civil society - existing partnerships should be promoted and new partnership forged – importantly this must happen through a coordinated, and formalised working group structure that is facilitated by the DoC. The CyberSecurity awareness campaign’s goal is to help South Africans think of CyberSecurity as everyone’s responsibility. We all need to ensure that our online environment is clean, secure and able to withstand any dangers. Because of our interconnectedness one infected computer could infect thousands and millions more. It’s why they’re called viruses. The results could be catastrophic because essential lifesaving functions now depend on technology. Basic steps can be taken to eradicate the scourge of cyber 14

2016

crime, viruses and hackers. This is what the campaign aims to promote. In every day life we take precautions like wearing a condom, putting on a seatbelt and unplugging certain electrical appliances. We do this because we have been informed of the correct precautions to take. Why should CyberSecurity be any different? In the same way the campaign aims to promote the simple and necessary steps everyone from politicians to school learners can take to be safe online. • • •

Use antivirus software Avoid certain websites Don’t open emails or attachments from suspicious addresses

Basic steps like these can improve everyone’s safety online. By providing the public with guides, published material, videos, tips and tools, the campaign will spread the message of CyberSecurity.

The internet is a giant global playground for millions. We do business, socialise and bear our souls online and think nothing of it. We learn new technologies and spend more and more time browsing this vast landscape. In the process we leave a trail of our identity everywhere we go. We create an online profile of ourselves that others can access without our knowledge. We secure our homes because of the threat of crime outside, yet think nothing about leaving our computers and other devices vulnerable to criminals online. In his address to the CyberSecurity Symposium in March this year, State Security Minister David Mahlobo said: “Any country or enterprise needs to better mitigate and defend against dynamic threats, minimises risks, and maximise the ability to respond and recover from attacks and disasters of all kinds. “We need to work hard in terms of research to develop innovations

CYBERSECURITY AWARENESS

for addressing a long list of CyberSecurity priorities. “Serious breaches of CyberSecurity in financial and military computer systems have already occurred. Identity theft is a burgeoning problem. Viruses and other cyber-

attacks plague computers small and large and disrupt commerce and communication on the Internet.� Ultimately, the government wants its citizens to enjoy the benefits and convenience of the internet without having to

encounter its inherent pitfalls. South Africa needs to advance to a higher level of internet safety where we are more vigilant, more knowledgeable and more empowered. Stop. THINK. Connect. 2016

15

CYBERSECURITY AWARENESS

CYBERSECURITY AWARENESS CAMPAIGN STRATEGY The diversity of cyber crime and its various threats requires a multi-faceted approach and a two-step strategy.

Stop. THINK. Connect.

I

mplementing a CyberSecurity Awareness Campaign for society at large presents many challenges, namely language, understanding and physical hindrances like reaching residents of faraway rural communities. To this end, government has devised a two-step strategy. STEP 1: • •

General awareness campaign Targeted awareness campaign

A general campaign will involve high end messages communicated to the public about the dangers lurking online. The aim here is to instill the need for online safety in the national consciousness. Raising awareness is the first step towards allowing the public to play an active role in CyberSecurity. 16

2016

A targeted campaign would involve drilling down to the various groups within our society like business, children, civil society and parents. Importantly, these specific spheres need to be communicated to in very different ways and voices. IT SHOULD BE NOTED THAT EVERY SEGMENT WILL HAVE TO IDENTIFY: • • •

a message, communications channel and partnership.

The successful implementation of the process will depend on the availability of resources and the involvement of strategic partnerships. In addition, the effectiveness of each of the identified areas would have to be monitored and

evaluated to inform the review of the approach. Which brings us to Step 2 in the strategy: STEP 2: •

Review CyberSecurity Awareness Campaign

A last critical step in the strategy is to ensure that the strategy is measurable to allow for the monitoring and evaluation of effectiveness in order to inform a future amendment process if required. In order to define the success or failure of the campaigns a review process is necessary, where it will be judged on certain criteria. Ultimately a decrease in incidents of cyber crime and security breaches will be a deciding factor. Stop. THINK. Connect.

CYBERSECURITY AWARENESS

17

2016

MOVING SOUTH AFRICA TO A HIGHER LEVEL OF INTERNET SAFETY

Department Of Telecommunications & Postal Services CyberSecurity Campaign

Stop. THINK. Connect.