Cyber attacks in Kenya double to 5m in a year

Cyber attacks have more than doubled over the last year in Kenya to stand at 5.4 million.

Releasing the Kenya cyber security report 2014 Wednesday, Mr William Makatiani, the managing director of Serianu Ltd, said the breaches cost an estimated Sh5 billion. Top attacks on Kenyan systems came from Germany and Kenya itself. In 2012, China topped the list.

The report was prepared by Serianu Cyber Threat Intelligence Team, Telecommunications Service Providers of Kenya (Tespok) and United States International University Africa’s Centre for Informatics Research and Innovation (Ciri).

INSIDER THREATS

“Findings from the report will sensitise the country on the extent of cyber security risk so that action can be taken,” said Tespok chairperson Kris Senanu.

Top issues noted in 2013 were insider threats perpetrated by employees, telecommunications threats, social media, online and mobile banking, mobile money fraud and cyber espionage respectively.

According to Serianu, insider attacks are getting deadlier as business models continue to evolve. These are threats deliberately caused by current employees.

Last year for instance, Banking Fraud Investigations Department reported hacking in customer bank accounts between April 2012 and 2013 which led to losses of Sh1.49 billion. The schemes were hatched by staff.

The report attributes increase in cyber threats to explosion of mobile devices facilitating business processes to migrate to the Internet. The result is Internet banking, mobile money transfers, real time gross settlement, credit card, and cheque payments, exposing businesses to online frauds.

Banking sector is also at high risk with two out of 33 banks having implemented client side encryption - a security mechanism that protect customer login credentials - by February this year.