Kenyan sites at risk
SECURITY| July 24, 2012, 6:24 p.m.
By Semaj Itosno, Nairobi, Kenya
Use of free software without customization is exposing Kenyan websites to hackers.
A new report by Serianu, an IT security consulting firm, has revealed that more than 80% of local websites are built on open source software such as Wordpress, Joomla, Apache and MySQL whose security codes are available online for free.
According to William Makatiani, the managing director at Serianu Ltd, Government websites and banking institutions remain the most vulnerable targets since most of their website are developed externally but they rarely do a check on their security settings or update them.
“During our research, we came across a credit card shop that was selling credit card data issued by banks located in Kenya,” said Makatiani.
The study was done between the months of January and April this year and lists bank accounts, credit and debit card details as the most looked for data by cyber criminals.
Online fraud has been growing steadily in Kenya and commercial banks are estimated to lose Sh3 billion to cyber criminals annually.
Makatiani said unlike other proprietary software whose codes are only available to the vendor and the client, open source software source code is available to the general public for use and/or modification from its original design free of charge.
This provides an opportunity for cyber criminals to send software that has the ability to access computers and steal vital information such as business strategies or business plans, or confidential information from banks, insurance and telecommunication firms.
MORE SECURITY NEWS
Financial phishing skyrocketsKaspersky Lab’s experts have reported a substantial increase in the amount of financial phishing in spam globally. Read More
Fortinet: JP Morgan hack has the hallmarks of an APTThe coordinated hacks of JPMorgan Chase and a number of other banks, which was revealed in the global media yesterday, bear all the hallmarks of an APT attack, says Fortinet South Africa. Read More
McAfee names new Regional DirectorMcAfee, part of Intel Security, has announced the appointment of Trevor Coetzee as its new regional director, South Africa and Sub Saharan Africa. Read More
Security professionals slam govt, banks over securityNigeria’s Information Technology System and Security Professional (ITSSP) body says lenders are putting the cart before the horse by not first considering the security of applications before deploying them. Read More
Kaspersky Lab launches free app scanner for AndroidTo safeguard users against a number of Android vulnerabilities discovered in recent months, Kaspersky Lab has released a free mobile application for the platform. Read More
Police claim rise in cyber crimeBotswana Police have indicated that there is marked increase in crimes involving the internet in the country. Read More
Multi-layer security to combat social media attacksEnterprises are vastly underestimating the risk of social media, says Fortinet distributor Networks Unlimited. Read More
Where DDoS is a business opportunityDDoS attacks may strike fear into the hearts of anyone involved in the online space, but protecting against them presents a new business opportunity for ISPs, says Networks Unlimited. Read More
Biometrics in retail expected to boomThe use of biometrics in retail is expected to increase dramatically, says Ideco. Read More
Kaspersky Lab: Koler ‘police’ mobile ransomware now targets PCs, AndroidKaspersky Lab has issued a warning of ransomware that displays customised messages to victims in over 30 countries. Read More
FEATURED STORYMFarmer SMS redefines market access for Ugandan farmers
Ugandan smallholder farmers are benefitting from an ambitious innovative ICT mobile phone initiative that offers weather reports and up-to-date market information about changes in prices for agricultural commodities, thus granting them lucrative returns from their farming ventures.
BEST READ NEWS
IN DEPTHNIG President speaks his mind
Bayo Banjo, CEO, Disc Communications and President, Nigeria Internet Group (NIG) says the proposed licensing of infrastructure companies by the Nigeria Communications Commission (NCC) will breed corruption and entrench monopolistic practices. Kokumo Goodie reports.