South African context, practical guidance

Cyber safety advice for citizens in South Africa

Browse guidance Report an incident

Advice by audience

Choose the guidance that matches your situation

You & your family

Banking scams, passwords, phones, home Wi-Fi, children online and what to do after a data breach.

Small & medium organisations

Affordable actions for SMMEs, schools, clinics, NGOs, clubs and professional practices.

Medium to large organisations

Governance, resilience, ransomware readiness, cloud risk and critical supplier assurance.

Self-employed & sole traders

Simple controls for consultants, creatives, tradespeople and micro-business owners.

Public sector

Guidance for municipalities, departments, schools and public entities protecting citizen services.

Cyber security professionals

Operational playbooks, engineering patterns, threat sharing and secure delivery practices.

Common topics

Sample guidance areas

Scam messages and calls Passwords, passkeys and MFA Backups during load shedding Remote work and cloud tools Ransomware readiness Supply chain assurance Citizen data and POPIA Secure development Threat intelligence

When something goes wrong

Report, preserve evidence, then recover

If money was stolen, a crime was committed or you are being extorted, report it to SAPS. If personal information may have been compromised, assess POPIA notification duties and contact the Information Regulator where required. For technical incident coordination, contact South Africa's Cybersecurity Hub.

SAPS crime reporting SAPS cybercrime tips Cybersecurity Hub Information Regulator