WELCOME !

THANK YOU FOR VISITING THIS SITE. I HAVE BEEN USING BOTH SWAHILI AND ENGLISH LANGUAGE TO EXPRESS ISSUES - I HAVE ATTACHED ENGLISH VERSION TO SOME OF THE SWAHILI NEWS/STORY AT THE END.

Monday, 9 October 2017

THE RISE OF FINANCIAL CYBER THREATS

FINANCIAL threats are still profitable for cyber criminals and, therefore, continue to be an enduring part of the threat landscape. From financial Trojans that attack online banking, to attacks against automated teller machines (ATMs) and fraudulent interbank transactions, there are many different attack vectors utilised by criminals.

Symantec predicted in 2015, there was an increase in attacks against corporations and financial institutions during 2016. This was evident from a series of high-value heists targeting Society for Worldwide Interbank Financial Telecommunication (Swift) customers. While there is no evidence of any such high value heists on Swift customers this year, the 2016 attacks saw several such institutions lose millions of dollars to cyber criminals and nation state-supported attackers such as the Lazarus group.


On average, 38 per cent of the financial threats we detected in 2016 were found in large business locations. Most of these infection attempts were not targeted attacks but were instead due to widespread email campaigns. Although we have seen a 36 per cent decrease in detection numbers for financial malware in 2016, this is mainly due to earlier detection in the attack chain and more focused attacks.

With more than 1.2 million annual detections, the financial threat space is still 2.5 times bigger than that of Ransomware. The financial Trojan threat landscape is dominated by three malware families: Ramnit, Bebloh (Trojan.Bebloh), and Zeus (Trojan.Zbot). These three families were responsible for 86 per cent of all financial.


Monday, 22 May 2017

KUENDELEA KUKUA KWA UHALIFU MTANDAO - NANI WA KULAUMIWA?

Kumeendelea kukua kwa uhalifu mtandao maeneo mengi duniani – Huku baadhi wakitafsiri hili linatokana na wana usalama mtandao kuonekana kulemewa (Kuzidiwa) na wahalifu mtandao.

Hili limepingwa katika kikao kilicho kamilika mwishoni mwa wiki iliyopita, Nchini Afrika kusini ambapo binafsi nilishiriki na kuzungumza na wenzangu kuhusiana na namna sahihi ya uchunguzi wa makosa ya kimtandao – Kubwa nililozungumzia ilikua ni kuwa rudisha wenzangu kwenye mstari kwa kuwakumbusha juu ya taratibu tulizojiwekea na zinazo takiwa kufatwa na mataifa yote duniani.

Pamoja na mambo mengine, nilikumbusha umuhimu kuhakiki hatua zote za uchunguzi zinakua katika maandishi – Zaidi, nilicho zungumza pia kinaweza kupatikana katika Habari inayoweza kusomeka “HAPA”

Kuhusiana na ukuwaji wa uhalifu mtandao kila mmoja wetu amekiri hili halisababishwi na wana usalama mtandao  kuzidiwa nguvu – Lawama imeonekana kuelekezwa kwa mataifa mbali mbali pamoja na watumiaji wa mwisho “Users”.

Friday, 20 January 2017

SAMSUNG SMARTCAM FALLS VICTIM TO CYBER ATTACK

Today all devices in our home are becoming more connected to networks than ever to make our lives easy. But what's worrisome is that these connected devices can be turned against us, anytime, due to lack of stringent security measures and insecure encryption mechanisms implemented in this Internet of Things (IoTs) devices.

Cam devices have among those connected devices we mostly use for many reasons – We have witness many incidents were these devises falling victims to Cyberattacks. The most recent victim of this issue is the Samsung's range of SmartCam home security cameras – Cybercriminals find their way into Samsung SmartCam, It's not necessary to break into your computer or Smartphone to spy on you.



Hackers have confirmed it is too easy to hijack the popular Samsung SmartCam security cameras, as they contain a critical remote code execution (RCE) vulnerability that could let hackers gain root access and take full control of these devices.

SmartCam is one of the Samsung's SmartThings ranges of devices, which allows its users to connect, manage, monitor and control "smart" devices in their home using their smartphones or tablets.


Wednesday, 28 December 2016

WATU 9 WAKAMATWA KWA UDUKUZI WA TOVUTI ZA SERIKALI

Mswada wa sheria mtandao nchini Thailand uliwekwa mezani kujadiliwa takriban wiki kadhaa zilizo pita. Muswada huo ambao ulikua ukingoja kupitishwa kua sheria umepelekea kelele nyingi Nchini humo ambapo wananchi wake walitaka ufanyiwe marekebisho kabla ya kua sheria huku wengine wakiukataa kabisa.

Wana usalama mtandao nchini humo walijaribu kutoa ufafanuzi ambao haukuzaa matunda na hatimae kutaka msaada kutoka kwa wanausalama mtandao wa maeneo mengine.

Wiki mbili zilizo pita wahalifu mtandao Nchini humo walitangaza kushambulia tovuti za serikali  ili kushinikiza mamlaka kufanyia kazi marekebisho ya sheria hizo za mtandao ambazo walidai hawakukubaliana nazo – Baadae walianza kushambulia tovuti mbali mbali na kusababisha mtafaruku mkubwa.





Tovuti ya polisi ya nchini humo (Royal Thai Police Office) ni miongoni mwa tovuti zilizo shambuliwa kimtandao ambapo ilidukuliwa na baadae kuangushwa kabisa. Kitu ambacho kilipelekea hasira kwa vyombo vya ulinzi na usalama vya nchi hiyo.


Monday, 19 December 2016

TYRIE: GCHQ NEEDS TO DO MORE TO PROTECT UK FROM CYBERATTACKS

Endrew Tyries MP
The head of the Treasure select committee.
More action may be needed to protect the financial services industry from a devastating cyber-attack, the head of the Treasure select committee has suggested.

Andrew Tyrie MP wrote to Ciaran Martin, head of the new cybersecurity centre of UK surveillance agency GCHQ, saying the lines of responsibility and accountability for reducing cyber-threats are opaque.

Tyrie’s letter to Martin, who is leading the Cheltenham-based National Cyber Security Centre (NCSC), uses last month’s incident at Tesco Bank to illustrate the vulnerabilities of the financial system.

In November, the banking arm of supermarket chain Tesco admitted that £2.5m had been stolen from 9,000 accounts in an incident which raised fresh concerns about the methods used by financial services firms to detect cyber-attacks.

Two-thirds of all major UK companies – not just financial services firms – have reported security breaches in the last year. The Bank of England has also listed the threat of cyber-attacks as one of the major risks facing the financial services industry.

Ciaran Martin
The head of GCHQ’s new cybersecurity arm
In his letter Tyrie, a Conservative MP, outlines the responsibility for cyber-threats as being shared between the Bank’s Prudential Regulation Authority (PRA), the Financial Conduct Authority and GCHQ. In turn, the regulatory arms are responsible to the Treasury, while GCHQ reports through the foreign secretary.

Tuesday, 13 December 2016

KAGOYA YASHAMBULIWA KIMTANDAO – TANZANIA NAYO YAASWA KUFUNGA MIKANDA

Kampuni Maarufu ya KAGOYA ya Nchini Japan Imeshambuliwa kimtandao ambapo taarifa binafsi na za kibenki za wateja wake zimedukuliwa.

Uhalifu huu umegundulika mwezi huu (Desemba, 2016) na tayari kampuni husika imesha toa taarifa kwenye vyombo vya usalama vya Nchini humo - Ambavyo pia vimeanza uchunguzi rasmi jana.

Kampuni hiyo imesema, Wateja wake waliotumia "Credit card " zao baina ya Aprili Mosi , 2015 hadi september 21, 2016 wameathiriwa na uhalifu huu na imewaasa wateja wake wafatilie taarifa za utoaji pesa wa kadi zao.

Taarifa binafsi takriban Elfu 50 pamoja na taarifa za kibenki takriban Elfu 21 zimeathirika katika shambulio hili la kimtandao.



Mjumuiko wa taarifa zilizo ibiwa ni, majina , barua pepe, Namba za simu, Namba za kadi za benki, maneno ya siri (Nywila) pamoja na taarifa nyingine za wateja wake.

Hii si mara ya kwanza kwa Nchi ya JAPANI kupata shambulio kubwa la kimtandao kwa mwaka huu (2016) pekee - Itakumbukwa, Mwezi May mwaka huu (2016) zaidi ya Yuan Bil. 1.5 sawa na Dola Milioni 13 ziliibiwa katika ATM zaidi ya 1400 ndani ya masaa mawili na nusu.