Kenyan sites at risk

SECURITY

|
Image: By BiztechAfrica
Kenyan sites at risk

By Semaj Itosno, Nairobi, Kenya

Use of free software without customization is exposing Kenyan websites to hackers.

A new report by Serianu, an IT security consulting firm, has revealed that more than 80% of local websites are built on open source software such as Wordpress, Joomla, Apache and MySQL whose security codes are available online for free.

According to William Makatiani, the managing director at Serianu Ltd, Government websites and banking institutions remain the most vulnerable targets since most of their website are developed externally but they rarely do a check on their security settings or update them.

“During our research, we came across a credit card shop that was selling credit card data issued by banks located in Kenya,” said Makatiani.

The study was done between the months of January and April this year and lists bank accounts, credit and debit card details as the most looked for data by cyber criminals.

Online fraud has been growing steadily in Kenya and commercial banks are estimated to lose Sh3 billion to cyber criminals annually.

Makatiani said unlike other proprietary software whose codes are only available to the vendor and the client, open source software source code is available to the general public for use and/or modification from its original design free of charge.

This provides an opportunity for cyber criminals to send software that has the ability to access computers and steal vital information such as business strategies or business plans, or confidential information from banks, insurance and telecommunication firms. 



Share the News

Get Daily Newsletter

Search News

comments powered by Disqus

MORE SECURITY NEWS

F5 introduces standalone security products to defend against targeted attacks

F5 DDoS Hybrid Defender provides superior infrastructure protection by combining multilayered DDoS defence across network, session, and application layers. Read More

Ethical Hacking students can’t get a heck of a job

Botswana ethical hacking students report that they are failing to break into the local job market.  Read More

Pokémon GO: Sophos warns against malicious copycats

Researchers at IT security company Sophos have warned mobile users to be cautious when downloading augmented reality (AR) mobile games. Read More

New PCI multifactor authentication rules: Is it too late?

Anton Jacobsz, MD at Networks Unlimited The PCI (Payment Card Industry) Security Council has extended its requirements for multi-factor authentication to anyone who has access to credit card data.   Read More

Web apps, a leading cause of security breaches

Anton Jacobsz, MD at Networks Unlimited Web applications are the leading cause of security incidents for financial services, according to the 2016 Verizon Data Breach Investigation Report; this is up from 31 percent from last year’s report.  Read More

Analyst firm Ovum publishes SWOT analysis of Arbor Networks Spectrum v2.1

Arbor Networks has announced that leading global telecoms analyst firm, Ovum, had published a strengths, weaknesses, opportunities and threats (SWOT) analysis of version 2.1 of Arbor Networks Spectrum. Read More

New RSA Via solution innovations strengthen identity assurance and governance

RSA, The Security Division of EMC, has announced new, innovative identity assurance and identity governance capabilities in RSA Via, designed to help organisations effectively balance security and user convenience as they assure identities and better govern and manage privileged access.  Read More

Study affirms the DDoS challenge

The threat of DDoS is becoming ever more ubiquitous and attackers continue to ramp up in both scale and frequency. Read More

The sum of details at hand equals the quality of a cyber threat investigation

Anton Jacobsz, MD at Networks Unlimited Just like any detective investigating a crime scene, security analysts need to be able to access all the information pertaining to any threat incident they are investigating.  Read More

ATM/card-related frauds rise 11.95%

Fraud cases perpetrated through the use of automated teller machine (ATM) and other card payment system has risen 11.95% over last year’s cases, according to the Nigeria Deposit Insurance Corporation (NDIC) annual report. Read More

PRESS OFFICES

Sage EnterpriseSAP AfricaTrust PayVMWareSamsung ElectronicsMitsumi DistributionPhoenix DistributionMTN BusinessSchneider ElectricMultichoiceMicrosoft 4AfrikaNetworks UnlimitedArbor NetworksEricssonTigo Ghana

FEATURED STORY

First-ever Africa Barclays Accelerator programme concludesFirst-ever Africa Barclays Accelerator programme concludes

Ten fintech companies have concluded the first-ever Barclays Accelerator, powered by Techstars in Africa.

 

IN DEPTH

Ethical Hacking students can’t get a heck of a jobEthical Hacking students can’t get a heck of a job

Botswana ethical hacking students report that they are failing to break into the local job market.