Certificate in Cyber Security · Module 1: Understanding Cyber Threats in Zambia, 1.1 What is Cyber Security and Why It Matters in Zambia

Free Preview

Course content

Module 1: Understanding Cyber Threats in Zambia 4

1.1 What is Cyber Security and Why It Matters in Zambia
1.2 Common Threats: Malware, Ransomware and Network Attacks
1.3 The Mind of an Attacker: Who Targets You and Why
Module 1 Quiz: Understanding Cyber Threats

Module 2: Passwords, Accounts and Two-Factor Authentication 4

2.1 Building Strong Passwords and Passphrases
2.2 Password Managers and Why They Help
2.3 Two-Factor Authentication (2FA)
Module 2 Quiz: Passwords and Two-Factor Authentication

Module 3: Phishing, Mobile Money Fraud and Social Engineering 4

3.1 Recognising Phishing Emails and Messages
3.2 Mobile Money Fraud: MoMo and Airtel Money Scams
3.3 Social Engineering Tactics and How to Resist
Module 3 Quiz: Phishing, Mobile Money Fraud and Social Engineering

Module 4: Securing Phones, Windows PCs and Small Office Networks 4

4.1 Securing Your Android Phone and iPhone
4.2 Securing a Windows PC: Updates, Antivirus and Firewall
4.3 Small Office Network Safety: Router, Wi-Fi and Guests
Module 4 Quiz: Securing Devices and Networks

Module 5: Data Protection, Zambian Law and Incident Response 4

5.1 Backups and Data Protection Basics
5.2 Zambia’s Cyber Security Act and Personal Privacy
5.3 What to Do After a Breach
Module 5 Quiz: Data Protection, Law and Incident Response

Module 1: Understanding Cyber Threats in Zambia

1.1 What is Cyber Security and Why It Matters in Zambia

Certificate in Cyber Security

60 min

What You Will Learn

By the end of this lesson you will be able to explain cyber security in plain language, identify why it matters for a Zambian household or small business, and list the three main goals every security plan must achieve: keeping information private, accurate and available when needed.

What Is Cyber Security?

Cyber security is the practice of protecting computers, phones, networks and data from theft, damage or misuse. It is not only for banks or big companies in Lusaka. A market trader in Soweto Market who accepts Airtel Money, a poultry farmer in Kalomo who keeps customer records on a smartphone, and a civil servant who files ZRA returns online all need cyber security.

Think of cyber security like locking your shop. You do not leave your cash box open overnight. In the same way, you should not leave your phone, laptop or online accounts open to attackers.

Worked Example: A Civil Servant’s ZRA Login

Mr Mumba works in accounts at a ministry office in Lusaka. Every month he logs into the ZRA e-filing portal using a shared office computer. He saves his password in the browser because it is convenient, and he rarely locks the computer when he steps out for tea.

One afternoon a visitor uses the unlocked computer to open the browser, sees the saved password, and submits a fake tax return that changes the company’s TPIN contact details. The ministry only discovers the fraud when genuine ZRA notices stop arriving. From that day, Mr Mumba:

locks the computer every time he leaves the desk,
removes saved passwords from the browser and uses a password manager,
turns on two-factor authentication for the ZRA portal, and
logs out of e-filing at the end of each session.

This example shows that cyber security is about habits as much as technology.

Worked Example: A Small Shop Goes Digital

Mrs Banda runs a grocery shop in Kalomo. She started selling on WhatsApp and now receives payments through MTN Mobile Money. Her phone stores:

customer names and phone numbers,
supplier bank details,
daily sales totals, and
her Airtel Money PIN written in a note.

One day her phone is stolen. Because the PIN was saved in a note, the thief withdraws ZMW 1,200 from her mobile money account and messages her customers asking for more money. A simple security habit—memorising the PIN and using app lock—would have prevented most of the damage.

The CIA Triad

Security professionals use three words to describe what they protect. You will see these throughout the course:

Confidentiality — only the right people can see the information. Example: your NRC number or TPIN.
Integrity — information cannot be changed secretly. Example: your ZRA e-filing records or exam results.
Availability — information and services are there when you need them. Example: being able to buy ZESCO tokens online during load-shedding.

Try It Yourself

List three digital things you own or use (phone, email, mobile money account, Facebook page, etc.).
For each one, write down what would happen if a stranger gained access to it.
Decide which of the three CIA goals matters most for each item.
Put a screen lock on your phone today if you have not already done so.
Check whether any computer you use saves passwords in the browser and remove any that are not yours.
Ask a colleague or family member to name one digital asset they would hate to lose.

Key Terms

Cyber security — protecting devices, networks and data from harm.
Confidentiality — keeping information away from unauthorised people.
Integrity — keeping information accurate and unaltered.
Availability — ensuring systems and data can be used when needed.
Threat — any possible danger to your information or systems.
Asset — anything of value that needs protection, such as data, devices or accounts.
Vulnerability — a weakness that an attacker could exploit.

Summary

Cyber security is a daily responsibility for every Zambian who uses a phone, a computer or mobile money. The CIA triad—confidentiality, integrity and availability—gives you a simple way to decide what to protect and why. Small changes, such as locking your phone and not storing PINs in notes, already make you a harder target.