The holy month of Ramadan is a time when Middle East-based companies step up cybersecurity with increased vigilance and external support amid reduced working hours and increased e-commerce activity.
The ninth month of the Muslim calendar is observed around the world as followers take time to reflect and practice fasting, and cybersecurity teams often operate with reduced staffing. Ramadan is also a time when Muslim shoppers tend to increase spending on specialty foods, gifts and special offers.
This also creates a perfect storm for bad actors to conduct fraudulent activities and scams.
Endpoint protection company Resecurity noted a significant increase in cyber-malevolence during Ramadan, which began on March 10. The company estimates that the total financial impact of these cyber attacks and cyber scams against the Middle East has reached up to $100 million so far during Ramadan this year. This figure takes into account fraud perpetrated against expats, foreign residents and visitors and includes wire fraud, fraudulent campaigns, e-commerce fraud and phishing.
In particular, Resecurity notes a growing trend of cybercriminals impersonating local shipping companies like Aramex, Express SMS, and Zajil Express to deceive Internet users. They target victims via SMS, iMessage and WhatsApp with fake package delivery messages that pressure the victim to immediately pay for their “delivery”.
“[Users] you are strongly advised to refrain from sharing personal and payment information on questionable sites or with individuals impersonating bank or government employees,” Resecurity warned in its report.
Shilpi Handa, associate director of security research, Middle East, Turkey and Africa (META) at IDC, agrees that there is a “noticeable increase” in DDoS, phishing and ransomware attempts during the holy month.
Cyber risk preparation
Nonetheless, cybersecurity professionals in the region are well informed about the escalation of cyber risk during Ramadan. Security preparations typically begin well before Ramadan, Handa notes.
“Many organizations proactively enhance their outsourcing contracts during this period, with a particular focus on strengthening 24/7 security operations,” he says, adding that employing a remote and diverse workforce it is especially advantageous during Ramadan as 24-hour security shifts can be fully managed. covered by a mix of Muslim fasters and non-Muslim staff.
Organizations that expect to be short-staffed during Ramadan should prioritize their critical infrastructure to ensure operational continuity and reduce the frequency of active threat hunting if resources are limited, Handa says. Businesses should also improve email security measures and corporate networks because these have historically been targeted in the Middle East, he adds.
In recent years, the UAE Cyber Security Council has started issuing special advisories during Ramadan. On March 4 this year, the The United Arab Emirates has launched its national cybersecurity campaignaimed at raising public awareness and promoting best practices in cybersecurity.
Ezzeldin Hussein, regional senior director, solutions engineering, META at SentinelOne, advises companies to prioritize cross-training within cybersecurity teams to ensure essential tasks can be handled by multiple team members. And establish clear protocols for incident response and escalation paths to streamline decision-making processes amid possible reduced staffing levels, he adds.
Ali Haider, senior security consultant at New York-based Secureworks, says companies should take additional steps to foster a culture of vigilance and awareness among employees and encourage them to report any suspicious activity or security issues.
Haider, who worked in the United Arab Emirates and Saudi Arabia has been recommending that companies coordinate with the relevant law enforcement agencies for over a decade. “Maintain open communication channels and coordinate security efforts as needed. Collaboration with authorities can improve security effectiveness and facilitate a coordinated response to security incidents,” he says.
Ramadan and all year round
Of course, robust cybersecurity measures should be implemented all year round, not just during Ramadan, warns Haider.
“Attackers can exploit potential vulnerabilities, such as reduced staff or distracted teams. However, companies should maintain vigilance and strengthen cybersecurity measures year-round,” he says. “Ultimately, a proactive approach is key to protecting yourself from cyber attacks, regardless of the time of year.”