Kenyan sites at risk
SECURITYBy BiztechAfrica - July 24, 2012, 6:24 p.m.
By Semaj Itosno, Nairobi, Kenya
Use of free software without customization is exposing Kenyan websites to hackers.
A new report by Serianu, an IT security consulting firm, has revealed that more than 80% of local websites are built on open source software such as Wordpress, Joomla, Apache and MySQL whose security codes are available online for free.
According to William Makatiani, the managing director at Serianu Ltd, Government websites and banking institutions remain the most vulnerable targets since most of their website are developed externally but they rarely do a check on their security settings or update them.
“During our research, we came across a credit card shop that was selling credit card data issued by banks located in Kenya,” said Makatiani.
The study was done between the months of January and April this year and lists bank accounts, credit and debit card details as the most looked for data by cyber criminals.
Online fraud has been growing steadily in Kenya and commercial banks are estimated to lose Sh3 billion to cyber criminals annually.
Makatiani said unlike other proprietary software whose codes are only available to the vendor and the client, open source software source code is available to the general public for use and/or modification from its original design free of charge.
This provides an opportunity for cyber criminals to send software that has the ability to access computers and steal vital information such as business strategies or business plans, or confidential information from banks, insurance and telecommunication firms.
MORE SECURITY NEWS
Corporate cyber security threats of the year91% of organisations polled suffered a cyber-attack at least once in the past year, says Kaspersky Lab in its security review of 2013. Read More
Managed security services grows in EMEAThe managed security services market in EMEA is experiencing rapid growth as the proliferation of targeted cyber attacks compel organisations to turn to MSS providers for their security needs, says Frost & Sullivan. Read More
Expert predicts ‘doom’ for corporate GhanaA cybercrime expert has warned that urgent steps must be taken to address the ‘incessant cybercrimes' impacting corporates in Ghana. Read More
Q3 2013 sees alarming growth in data threatsThe third quarter of 2013 was a turning point for malware writers specialising in mobile platforms, says Kaspersky Lab. Read More
Fortinet illustrates need for real world firewall testingSecurity solutions firm Fortinet has illustrated the significant difference in performance achieved by various Next Generation Firewalls under real world conditions. Read More
Cyber Security Africa to host the 2nd East Africa IT & Cyber Security ConventionAfter the success of the inaugural East Africa IT & Cyber Security Convention last year, the global event series for heads of ICT and security enters its second year. Read More
New guidelines for securing card dataThe international PCI Security Standards Council (PCI SSC) has published version 3.0 of the PCI Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS). Read More
ARM, NetClean partner to stop child abuse contentSpecialist security distributor African Risk Mitigation (ARM) has partnered with NetClean in the fight against the proliferation of child sexual abuse images across Africa. Read More
Have you been breached?Given that recent research has revealed that the average advanced persistent threat lurks on a business network for hundreds of days before it is discovered, how do businesses tell that their network has been compromised? Read More
FEATURED STORYGaming app introduces investors to trading
A new virtual stock market app is equipping would-be investors with the skills they need to trade.
BEST READ NEWS
IN DEPTHCorporate cyber security threats of the year
91% of organisations polled suffered a cyber-attack at least once in the past year, says Kaspersky Lab in its security review of 2013.