Kenyan sites at risk
SECURITY| July 24, 2012, 6:24 p.m.
By Semaj Itosno, Nairobi, Kenya
Use of free software without customization is exposing Kenyan websites to hackers.
A new report by Serianu, an IT security consulting firm, has revealed that more than 80% of local websites are built on open source software such as Wordpress, Joomla, Apache and MySQL whose security codes are available online for free.
According to William Makatiani, the managing director at Serianu Ltd, Government websites and banking institutions remain the most vulnerable targets since most of their website are developed externally but they rarely do a check on their security settings or update them.
“During our research, we came across a credit card shop that was selling credit card data issued by banks located in Kenya,” said Makatiani.
The study was done between the months of January and April this year and lists bank accounts, credit and debit card details as the most looked for data by cyber criminals.
Online fraud has been growing steadily in Kenya and commercial banks are estimated to lose Sh3 billion to cyber criminals annually.
Makatiani said unlike other proprietary software whose codes are only available to the vendor and the client, open source software source code is available to the general public for use and/or modification from its original design free of charge.
This provides an opportunity for cyber criminals to send software that has the ability to access computers and steal vital information such as business strategies or business plans, or confidential information from banks, insurance and telecommunication firms.
MORE SECURITY NEWS
Online bank accounts targeted over 5m timesDuring the past quarter, there were 5.68 million notifications about attempted malware infections to steal money from users via online access to bank accounts, says Kaspersky. Read More
Nigeria’s electronic fraud losses hit N4bWith the introduction of the cashless economy scheme of the Central Bank of Nigeria (CBN) designed to discourage use of cash, electronic crooks seem to have become more daring, fleecing banks and customers of over N4 billion. Read More
The human firewall – turning security’s weakest link into IT’s strongest allyWhen it comes to cyber security, people are often the weakest link. A comprehensive approach to ‘people security’ is essential in closing the gap on this particular vulnerability, says Galix. Read More
FNB Botswana sensitizes customers on cyber crimeFNB Botswana has advised customers to be vigilant of scammers when purchasing via money transfer and online platforms. Read More
Worse than it seems: DDoS attacks coincide with other threatsA survey undertaken by Kaspersky Lab and B2B International has demonstrated that, in most cases, a DDoS attack is only the tip of the attack iceberg. Read More
Survey: 98 days to identify advanced cyber threatsA Ponemon Institute survey has found the average time span for financial services to identify an attack inside the network is 98 days. Read More
Corporations, others to up security spend by 25%The app economy demands a new approach to security, says a recent study. Read More
P@$$wORD_1: How secure is your password?With organisations being blamed for loopholes that give hackers access to information, companies are increasingly looking at how to better protect their users’ passwords. Read More
Botswana urged to rethink cyber security threatsThe founder of the African Cyber Risk Institute (ACRI) says now is the time for Botswana to create a national cyber risk agenda. Read More
FEATURED STORYeCommerce in Africa urged to take advantage of mobile
The Executive Chairman of Alltel has urged operators of eCommerce in Ghana and Africa as a whole to take advantage of the current trend for Africans to trade online via their mobile handsets.
BEST READ NEWS
IN DEPTHNigeria needs $25b investment in broadband, says Wood
Telecoms executive Adrian Wood speaks to Kokumo Goodie about investment potential in Nigeria.