ONIX

31/12/2025

Wishing you a safe and successful 2026. Happy New Year from ONIX!

29/12/2025

𝙵𝙴𝚂𝚃𝙸𝚅𝙴 𝙲𝚈𝙱𝙴𝚁 𝚃𝙸𝙿𝚂 • 𝗨𝗽𝗱𝗮𝘁𝗲𝘀
-----------------------
Updates aren’t optional — they’re one of the simplest ways to close security gaps. Use this checklist to spot update-related risks and keep your devices protected:
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗟𝗼𝗼𝗸 𝗢𝘂𝘁 𝗙𝗼𝗿:
• Repeatedly postponing or ignoring system and application updates
• Devices running outdated operating systems, browsers, or antivirus software
• Unpatched third-party plug-ins or unsupported applications
• Devices that haven’t been restarted in weeks and show pending updates
• Unexpected update failures or warnings that aren’t addressed
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗗𝗼 𝘁𝗼 𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿𝘀𝗲𝗹𝗳:
• Enable automatic updates for operating systems, applications, and security software
• Restart devices regularly to ensure updates are applied
• Remove or replace unsupported or unused applications that no longer receive patches
• Keep browsers, extensions, and plug-ins up to date; avoid installing from unverified sources
• Report recurring update failures to IT so they can investigate and remediate

25/12/2025

Wishing you a peaceful Christmas from all of us at ONIX!

22/12/2025

𝙵𝙴𝚂𝚃𝙸𝚅𝙴 𝙲𝚈𝙱𝙴𝚁 𝚃𝙸𝙿𝚂 • 𝗤𝘂𝗶𝘀𝗵𝗶𝗻𝗴
-----------------------
QR codes can be used to hide malicious links and steal credentials or payment details. Use this checklist to spot suspicious codes before you scan:
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗟𝗼𝗼𝗸 𝗢𝘂𝘁 𝗙𝗼𝗿:
• Unsolicited QR codes on posters, receipts, stickers, menus, or emails that ask you to scan for discounts, payment, or login
• QR codes placed over existing codes/stickers or printed on unofficial signage
• Shortened or obfuscated URLs displayed after scanning that don’t match the expected domain
• Requests to enter credentials, OTPs, or payment details after scanning a code
• QR codes accompanied by pressure to act quickly (limited-time offers, urgent prompts)
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗗𝗼 𝘁𝗼 𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿𝘀𝗲𝗹𝗳:
• Check the physical context — is the QR code from an official source? If unsure, don’t scan
• Use a QR scanner that previews the full URL before opening it; inspect the URL carefully for legitimacy
• When a QR code claims to link to payment or login, open the official app or site manually instead of following the scanned link
• Avoid entering credentials, payment details, or OTPs on pages opened via unknown QR codes
• If you find a suspicious or tampered QR code in the workplace, report it and remove/cover it if authorised

18/12/2025

𝙵𝙴𝚂𝚃𝙸𝚅𝙴 𝙲𝚈𝙱𝙴𝚁 𝚃𝙸𝙿𝚂 • 𝗗𝗮𝘁𝗮 𝗛𝗮𝗻𝗱𝗹𝗶𝗻𝗴
-----------------------
Most data incidents start with something that feels “small.” A quick upload to personal storage, the wrong recipient, or an unsecured screen can turn into a serious disclosure. Use this checklist to spot risky data handling and keep sensitive information protected:
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗟𝗼𝗼𝗸 𝗢𝘂𝘁 𝗙𝗼𝗿:
• Uploading files to personal cloud storage (Google Drive, Dropbox, etc.)
• Sending work data to personal or external email addresses
• Using unauthorised USB drives or sharing devices
• Printing or sharing confidential documents without encryption
• Leaving screens unlocked or documents visible in shared areas
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗗𝗼 𝘁𝗼 𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿𝘀𝗲𝗹𝗳:
• Always use approved company tools for file sharing and collaboration
• Verify recipients before sending sensitive emails
• Encrypt attachments when sending confidential data externally
• Lock your screen when away from your desk
• Ask IT or Compliance if you’re unsure about data classification or sharing procedures
• Report accidental disclosures immediately — early reporting limits damage

15/12/2025

𝙵𝙴𝚂𝚃𝙸𝚅𝙴 𝙲𝚈𝙱𝙴𝚁 𝚃𝙸𝙿𝚂 • 𝗣𝗮𝘀𝘀𝘄𝗼𝗿𝗱 𝗛𝘆𝗴𝗶𝗲𝗻𝗲
-----------------------
Weak or reused passwords make it easy for attackers to gain access. Use this checklist to identify risky habits and strengthen your account security:
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗟𝗼𝗼𝗸 𝗢𝘂𝘁 𝗙𝗼𝗿:
• Reusing the same password across multiple platforms
• Using personal details (birthdays, names, pet names) in passwords
• Short or predictable patterns (“12345”, “Qwerty!”, “Password2025”)
• Storing passwords in plain-text files or on sticky notes
• Ignoring prompts to enable MFA or use password managers
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗗𝗼 𝘁𝗼 𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿𝘀𝗲𝗹𝗳:
• Use a cipher or memory pattern only you understand (e.g., pick words from a song and add symbols in predictable ways)
• Build pass-phrases, not single words (e.g., CoffeeMountainsRunFast!)
• Use a password manager to generate and store strong, unique passwords
• Enable Multi-Factor Authentication (MFA) on all accounts
• Change passwords immediately if you suspect an account has been exposed
• Check active sessions regularly

13/12/2025

𝙵𝙴𝚂𝚃𝙸𝚅𝙴 𝙲𝚈𝙱𝙴𝚁 𝚃𝙸𝙿𝚂 • 𝗣𝗵𝗶𝘀𝗵𝗶𝗻𝗴
-----------------------
Phishing emails are designed to look real, feel urgent, and trick you into clicking, sharing details, or opening something harmful. Use this checklist to spot the red flags and protect yourself:
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗟𝗼𝗼𝗸 𝗢𝘂𝘁 𝗙𝗼𝗿:
• Mismatched or misspelled sender domains (e.g. .com instead of .com)
• Unexpected requests for login credentials or payment details
• Emails that create urgency or fear (“Act now,” “Account suspended”)
• Links that don’t match the visible text — hover to preview
• Attachments you didn’t request, especially ZIP, EXE, or DOCM files
• Slightly “off” language or tone from a known contact (spelling, grammar, tone shifts)
• Generic greetings like “Dear user” or “Dear valued customer”
𝗪𝗵𝗮𝘁 𝘁𝗼 𝗗𝗼 𝘁𝗼 𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿𝘀𝗲𝗹𝗳:
• Verify the sender’s identity — use known contact channels, not the email’s reply address
• Hover over links before clicking; when in doubt, go directly to the official website
• Never open unexpected attachments
• Report suspicious emails to IT or Security immediately
• Trust your instincts — if it feels off, stop and verify
• Use tagged/alias email addresses when signing up for services or third-party forms (e.g. yourname+[email protected]). If you later receive unexpected mail sent to that alias, it can reveal who shared or sold your address and help you spot targeted phishing attempts. Create a unique tag for each service so you can trace the source of unsolicited messages and block or report the offending sender.

12/12/2025

Thank you for being part of our 2025!

Wishing you safe travels, warm moments, and a restful festive season. Our SOC remains on watch, monitoring and ready to support when you need us.

hashtag hashtag

18/06/2025

ONIX has always maintained the importance of data sovereignty. We regularly engage clients on what it means to own and control your data and the necessity to keep that which belongs to us within our borders. Our strategic partnerships with Snode Technologies and Pfortner are built on the foundation of data sovereignty. Data is our greatest asset and we should do everything in our power to retain it in our country. Not only does it promote sovereign security, but also creates employment in Namibia and develops much needed cybersecurity skills for ourselves and not others.

𝙈𝙤𝙣𝙚𝙮𝙬𝙚𝙗 𝘼𝙧𝙩𝙞𝙘𝙡𝙚: 𝘞𝘩𝘰 𝘰𝘸𝘯𝘴 𝘈𝘧𝘳𝘪𝘤𝘢𝘯 𝘥𝘢𝘵𝘢?
🔎 https://www.moneyweb.co.za/moneyweb-podcasts/the-business-of-africa/who-owns-african-data/

hashtag hashtag hashtag hashtag hashtag hashtag hashtag

A conversation on sovereignty and digital justice.

15/06/2025

To the women who can fix everything, from the smallest scrape to the biggest challenge, thank you. Happy Mother’s Day! 💐

15/06/2025

Today we celebrate the dads who show up, stay present, and make the everyday moments count. Your impact goes far beyond what you do, it’s who you are.