MWEZI WA USALAMA MITANDAO UMEFIKIA TAMATI - YALIYOJIRI NA MAZINGATIO YAKE.

Mwezi huu wa Oktoba mataifa mbali mbali yamekua yakiadhimisha kwa kukuza ufuhahamu kwa watu wake juu yamatumizi salama ya mitandao. Ni wazi ya kuwa mitandao inapotumika vibaya inaweza kuleta athari kubwa sana kwa jamii, na tayari matukio mengi kutoka maeneo mbali mbali tayari tumeendelea kuya shududia.

KATIKA MWEZI HUU: kwa uchache kabisa nitaangazia matukio baadhi nikianzia na kutokea nchini "MAREKANI" Raisi wa Marekani Alipitisha agizo muhimu kwa taifa hilo kuhusiana na matumizi ya kadi ili kufanyia miamala ya kibiashara ikiwa ni katika kukabiliana na matukio ya hivi karibuni nchini mwake.tukio ambalo limeibua mijadala mbali mbali huku mataifa mengine yakiaswa kulifanyia kazi na kuboresha baada ya uchambuzi wa tukio hilo kufanywa na wataalam mbali mbali wa maswala ya usalama mitandao.

"KENYA" kupitia mkutano wake mkuu wa mwaka unao wakutanisha wataalam na wafanya maamuzi katika maswala ya TEHAMA walipata kuangalia kwa karibu maswala mbali mbali ya kiusalama mitandao kwa kina na kuyatafutia ufumbuzi.

"TANZANIA" pia kupitia Warsha iliyofanyika na kushirikisha mataifa mbali mbali iliyofanyikia Tume ya Taifa Sayansi COSTECH mjadala wa kina ulio jikita kwenye maswala ya usalama mitandao ulioibua mazuri mengi ikiwa ni pamoja na kuendeleza ushirikiano baina ya washiriki pamoja na kubadilishana ujuzi na taarifa za msingi katika maswala ya usalama mitandao.

"CERT - EU" inayosimamia mwaswala ya usalama mitandao katika nchi wanachama za bara ulaya  walianza rasmi kujumuisha taarifa zinazopatikana hapa kwenye tovuti yao huku mijadala mbali mbali ya kiusalama mitandao kupitia foramu mbali mbali yakijadili taarifa zinazopatikana hapa.

"BBC - SWAHILI" na Vyombo vingine vya Habari Nchini vilionekana kuhamasisha matumizi salama ya mitandao, hatua ambayo naipongeza sana – Hii ni kwa sababu , vyombo vya habari vimekua na nafasi kubwa sana katika kuhakikisha wananchi wanapata ufahamu mzuri wa matumizi salama ya mitandao ili kuweza kujiweka salama wao na taifa lao kwa ujumla.

HIGH-LEVEL CYBERCRIMES TO BE PROSECUTED IN THE US

United States experienced large number of attacks in the recent years. As organized cyberattacks continue to plague the United States, the Department of Justice hopes to shift focus towards prosecuting cybercriminals.

The large volume of cyberattacks aimed at U.S. infrastructure, including banks and private sector companies, has finally led the U.S. Justice Department to begin showing interest in prosecuting cyberattack crimes. Assistant Attorney General John Carlin is spearheading the project, with a more realistic emphasis on cyber security efforts.

Similar to the statement made during five days "MEETING" took place in Dar-es-salaam aimed to building capacity and knowledge/information sharing, Carlin recently noted in his statement made in the US.

 "We need to develop the capability and bandwidth to deal with what we can see as an evolving threat," Carlin recently noted. He is building a team around him able to understand the seriousness of state-sponsored cyberattacks, especially by the Chinese and Russian governments.

Instead of worrying about rogue hackers, the government wants to work to dismantle organized hacker groups that victimize US companies - and consumers, with millions

of victims racked up. This is an important step by the federal government, which tried to bury its head in the sand, though that not surprisingly hasn't worked.

Meanwhile, a local college student facing federal charges for taking part in an online hacking group was sentenced on Thursday 23 of October to two years in prison.

WARSHA YA MASWALA YA USALAMA MITANDAO NCHINI YA FUNZA MENGI NA KUIBUA FURSA ZA AINA YAKE

Nchi ya Tanzania imepata bahati ya kipekee kuwa mwenyeji wa warsha ya Kimataifa ya maswala ya usalama mitandao iliyo shirikisha mataifa mbali mbali kujadili na kuongezeana uwezo wa jinsi wa kukabiliana na changamoto kubwa katika maswala ya uhalifu mitandao.

Warsha hii imekuja muda muafaka baada ya taarifa niliyo iandikia "HAPA" niliyo himiza na kuonyesha umuhimu mkubwa wa kuunganisha nguvu za pamoja kwenye vita dhidi ya uhalifu mtandao ikizingatiwa uhalifu mtandao ni uhalifu usio mipaka na kuna mahitaji makubwa ya kushirikiana katika taarifa na utaalam.

Warsha hii imekua na mafanikio makubwa sana ambapo nikiwa kama mtaalam wa maswala ya usalama mitandao na uchunguzi wa makosa ya digitali naweza kusema ni mengi tumeweza kubadilishana na uwezo  wa kuendeleza mapambano zaidi dhidi ya uhalifu mtandao umeongezeka kwa washiriki wote.

Wito Mkubwa ulitolewa na katibu mkuu wa wizara ya sayansi mawasiliano na teknolojia nchini profesa Patrick Makungu kuwataka wataalam na washiriki wengine kutochoka na kuongeza jitihada kukabiliana na wimbi la uhalifu mtandao linalokua kwa kasi duniani kote ili kuweza kuwa mbele ya wahalifu mitandao kupitia hotuba aliyo isoma kwa niamba ya Waziri wa Wizara  hiyo kama inavyoweza kusomeka "HAPA"

THE NEED OF KNOWLEDGE SHARING & COLABORATION TO THE FIGHT AGAINST CYBERCRIMES

With the growing technology, there is a need for cybersecurity experts and ICT experts at large to keep on learning new things and updating themselves of the current technologies – Dr. Waudo urged during the opening of the conference I attended in "KENYA"

The Rapid changes of technology each day that comes along with new techniques used to commit cybercrimes should force us to do the best we can to share knowledge among us and collaborate for us to be able to fight cybercrimes.

Knowledge sharing facilitates both capacity building and awareness to update individuals on the current situation.  – The key to succession to the fight against cybercrimes. It was well explained to experts during the InfoSec Europe 2014 in "LONDON"

Post by KILEO on Cybersecurity.

Knowledge sharing goes along with collaborations. I have said many times “Fighting cybercrime should not be a work of an individual alone” experts across nation and world at large should always think of the ways to extend collaborations for the best output.

We have witnessed the current initiatives "UK and US" took on the fight against cybercrimes. The initiatives we all predict will add impact. This example was seen before when European Union decided to form cybersecurity framework helping the

region on the fight against cybercrimes.

Two things I would kindly like to encourage each of the cybersecurity experts to keep in mind:

“TYUPKIN” YATIKISA MASHINE ZA ATM

Aina hii Malware inayojulikana kama Tyupkin yaleta maafa katika mashine za ATM. Tyupkin imekua ikisambazwa na kundi la wahalifu mtandao kutokea ulaya mashariki na kusababisha pesa nyingi kuweza kutoka kupitia ATM mashine ambapo tayari wataalam wa usalama mitandao kutoka Kaspersky Lab wakishirikiana karibu na polisi wasio na mipaka “Interpol” wamesha anza oparesheni ya pamoja kutafuta chanzo na ugunduzi katika mashine 50 umebainika hadi sasa.

Post by KILEO on Cybersecurity.

Video inayo onyesha kilichotokea kwenye Mashine Hizo:

Uchunguzi wa kina umeonyesha Mashine zilizo athirika zimekua zikigundulika kuwa na Window XP yenye 32-bit ambayo tayari Microsoft walisha tahadharisha watumiaji wake. Utafiti unaonyesha Mashine nyingi za ATM bado zimeendelea kutumia Window XP ambapo imekua ikirahisisha sana kuingiliwa na wahalifu.

ONLINE MURDER IS SET TO RISE BY THE END OF 2014.

The EU’s chief criminal intelligence agency warms that the threat of “online murder” is set to rise, with cyber criminals increasingly targeting victims with internet technology.

The European Police Office (Europol) said governments are ill-equipped to counter the menace of “injury and possible deaths” spurred by hacking attacks on critical safety equipment, the UK Independent reported Sunday.

Security experts called for a paradigm shift in forensic science which would react to the ‘Internet of Everything’ (IoE) – the dawning era of technological interconnectedness where increasingly more human activity is mediated through computer networks.

“The IoE represents a whole new attack vector that we believe criminals will already be looking for ways to exploit," according to the Europol threat "ASSESSMENT"

“The IoE is inevitable. We must expect a rapidly growing number of devices to be rendered ‘smart’ and thence to become interconnected. Unfortunately, we feel that it is equally inevitable that many of these devices will leave vulnerabilities via which access to networks can be gained by criminals."

DEATH ONLINE

Post by KILEO on Cybersecurity.

Citing a December 2013 report by US security firm IID, the Europol threat assessment warned of the first murder via "hacked internet-connected device" by the end of 2014.

TUJIKUMBUSHE MATUKIO MAKUBWA MATANO YAKIDUKUZI KATIKA MAKAMPUNI MAARUFU

Tukiwa tupo ndani ya Mwezi wa kuhamasisha uelewa wa matumizi salama ya mitandao, Marufu kama “NATIONAL CYBERSECURITY AWARENESS MONTH” nimeona si vibaya tukajikumbusha matukio muhimu matano ya kiuhalifu mtandao yaliyojiri mwaka huu.

Huku mataifa mbali mbali yakiendelea kujipanga katika mapambano dhidi ya uhalifu mtandao, bado matukio ya kiuhalifu mtandao yameendelea kuitikisa dunia. Yafuatayo ni matukio matano niliyo chagua kuyajadili siku ya leo.

NEIMAN MARCUS

Mwezi wa pili mwaka huu wa 2014, Kampuni ya Neiman Markus ilitengeneza vichwa vya habari baada ya kuingiliwa na wadukuzi wa mitandao waliofanikiwa kuchukua taarifa za wateja wake na kufanikiwa kuzima kila kiashiria ambacho kingeonyesha hali isiyo ya kawaida katika kampuni hiyo.

Awali taarifa zilionyesha ni wateja milioni moja na nukta moja ndio walio athirika  taarifa za kiuchunguzi ambazo zimeandikwa na “BUSSINESSWEEK” zimefafanua tukio hili.

APPLE

Kampuni ya Apple nayo haikubakishwa salama. Moja ya matukio makubwa yaliyojadiliwa na wana usalama mitandao ni pamoja na tukio la wadukuzi mitandao kuingilia, kuchukua na kuzisambaza picha mbaya za watu maarufu kutoka Hollywood ambao walikua wamezihifadhi katika moja ya huduma za Apple maarufu kama iCloud.

Hili halikua tukio zuri kwa Apple pakizingatiwa liliambatana na uzinduzi wa simu zake za iphone 6. Apple walipolizungumzia hili walisema udukuzi ulilengwa moja kwa moja kwa baadhi ya watu maarufu wa Hollywood na si udukuzi wa jumla ambao ungeathiri watumiaji wengi. Kiundani taarifa ya tukio la Apple inapatikana "HAPA"

TARGET

Wadukuzi mitandao waliingilia kampuni ya taget pia ambapo kwa mijibu wa taarifa inayosomeka "HAPA" imeonyesha athari kubwa iliyoikumba kampuni hiyo ambapo udukuzi huo umeigharimu kiasi cha Dola milioni Miamoja na Arobaini na nane.

CYBERSECURITY MATTERS TO ALL OF US

October is here again! A National Cyber Security Awareness Month — A month dedicated to raise awareness on cybersecurity issues. As the rate of cybercrime keeps increasing we should also remember we are all responsible to the fight against cybercrimes. As I have said in one of my writing that can be read "HERE" Nation has to take this month serious to raise awareness to the end users on the issues related to cybersecurity.

YOUR CYBER HYGIENE AFFECTS OTHERS

It’s not unlike public health. One of the reasons health officials urge almost everyone to get a flu shot is because people who are infected are more likely to infect others. And the same is true for cyber security. Infected devices have a way of infecting other devices and compromised systems can make everyone vulnerable. So your cyber hygiene isn’t just about protecting you, it’s about protecting all of us.

Bots or zombie networks are just one example. Bad guys look for vulnerable machines to infect and enlist them into a zombie army that infects other machines, thus greatly amplifying their ability to reach millions of users.

Even bad social networking and email security can be contagious. If your accounts are insecure, it makes it easier for others to go online as you and spread infections or social engineering attacks designed to steal data or money.

WHAT’S IN IT FOR YOU?

But forget altruism for a moment. Having an insecure machine or password can be personally devastating. I’ll spare you the scare tactics, you’ve probably heard them before — but I will remind you that an intrusion into any of your accounts or devices can escalate into a full-scale attack on your financial and reputational well-being.

Even something as basic as inadvertently sending out spam, can be embarrassing, but there is also the risk of identity theft and financial crime that can leave you with an empty bank account.

SHARED RESPONSIBILITY

Cyber security is a shared responsibility. Internet companies and brick and mortar merchants can do their part by shoring up the security of their networks and payment systems. Government can educate the public and enforce anti-cybercrime laws. Businesses can make sure that they have strong security processes in place; including making sure their employees use strong passwords and everyone can play an important role by securing our devices and being sure that our passwords are strong and unique.

MKUTANO WA WATAALAM WA TEHAMA WA NCHINI KENYA WAHIMIZA USHIRIKIANO

Kushirikiana katika maswala mbali mbali ili kuweza kufikia malengo ni jambo kubwa lililopata kusikika katika mkutano mkuu wa mwisho wa mwaka unaoendelea Nchini Kenya unaojadili changamoto mbali mbali za sekta ya Teknolojia ya Habari na Mawasiliano. Swala la usalama katika mitandao limepata kuangaliwa na changamoto mbali mbali katika mijadala Rasmi (Ndani ya Kikao) na isiyo rasmi (tuwapo nje ya ukumbi wa mkutano) zilipata kuangaliwa kwa ukaribu.

Swala uhimu nililo jifunza ni jinsi uhalifu mtandao katika mataifa haya mawili Kenya na Tanzania yanavyo fanyika na kujua ya kua kubadilishana mawazo katika hili litasaidia kujipanga kukabiliana na uhalifu mtandao ambao tayari kwa nchi ya Kenya umeendelea kukua ikiwa bado kwa Tanzania haujaonekana sana huku Kenya Ikijifunza pia ili kuweza kujipanga kabla ya uhalifu usika kuweza kushika kasi.

Namna mbali mbali zinazotumika na wenzetu wa Kenya ambao wameathirika sana na uhalifu mtandao (Mfano: Wakati Mkutano unaendelea – Baadhi ya mifumo mtandao ya serikali iliripotiwa kuangushwa na wahalifu mtandao) kwenye kukabiliana na uhalifu mtandao huku tukiangalia kwa karibu namna ambavyo teknolojia zinazotumika kupambana na uhalifu mtandao katika nchi hiyo zinavyoweza kutoa msaada wa kina kwenye makabiliano na uhalifu mtandao Nchini Tanzania.

Post by KILEO on Cybersecurity.

Ufunguzi wa Milango katika kushirikiana katika maswala mbali mbali ya TEHAMA kwa ujumla katika mataifa haya mawili huku tukiangalia kwa karibu namna tunavyoweza kuchukulia umakini mapambano ya uhalifu mtandao katika nchi Hizi mbili na Ukanda mzima  sawa kabisa na jinsi hatua mbali mbali zinazochukuliwa dhidi ya mapambano na Ugaidi katika Ukanda huu.