DEMANDS ON ETHICAL HACKERS ARE RAPIDLY GROWING

SINGAPORE: The Ministry of Interior and Defence (Mindef) will be inviting about 300 international and local hackers to hunt for vulnerabilities in its Internet-connected systems next year (2018), in a bid to guard against ever-evolving cyber threats.

From Jan 15 to Feb 4, these selected experts will try to penetrate eight of Mindef's Internet-facing systems, such as the Mindef website, the NS Portal and LearNet 2 Portal, a learning resource portal for trainees.

--------------------------------------------

RELATED POSTS

-CYBERSECURITY AGENCY TO BE FORMED IN SINGAPORE

-SINGAPORE GOVERNMENT TO WORK WITH EDUCATIONAL & PRIVATE SECTOR TO FIGHTCYBERCRIMES

-SINGAPORE YAFIKIA PAZURI KATIKA USALAMA MTANDAO

--------------------------------------------

These registered hackers can earn cash rewards - or bounties - between $150 and $20,000, based on how critical the flaws discovered are. Called the Mindef Bug Bounty Programme, it will be the Government's first crowdsourced hacking programme.

KUELEKEA MWISHO WA MWAKA TUNATEGEMEA MASHAMBULIZI MTANDAO ZAIDI

Nikizungumza na kundi maalum katika vikao vinavyoendelea nimewasilisha ujumbe wa Tahadhari ambapo Uma umetahadharishwa juu ya mashambulizi takriban Milioni hamsini (50 Milioni) duniani kote katika kipindi cha sikukuu yatakayo gharimu kati ya Dola 50 – Dola 5’000 kwa kila shambulizi.

Matarajio hayo ni kutokana na matumizi makubwa ya mtandao katika kufanya miamala mbali mbali ya manunuzi ya bidhaa katika kipindi hiki cha sikukuu ambapo watu wengi duniani kote wamekua wakinunua vitu mbali mbali kwa wingi kwa njia ya mitandao.

------------------------------

RELATED POST:

-Idadi kubwa ya Programu tumishi zimeendelea kuiba taarifa za watumiaji.

-Ukuaji wa matumizi ya Tehama waongeza uhalifu Mtandao.

------------------------------

Kwa mujibu wa ripoti ya kitelijensia ya matishio mtandao, iliyo wasilishwa na NTT Security – Imeeleza uwepo wa takriban utengenezwaji wa tovutiMilioni moja na nusu zenye mlengo wa kurubuni  kila mwezi ambazo baadhi yao zinadumu kati ya masaa ma nne had inane na kutoweka. Hili niongezeko la asilimia 74 (74%) kulinganisha na takwimu za miezi sita iliyopita.

UK: NHS TO LAUNCH £20M CYBER SECURITY OPERATIONS CENTER

In the recent years, most developed countries are investing significantly in cyber defence & attack capabilities. The NHS is now spending £20m to set up a security operations centre that will oversee the health service's digital defences.

Among others, NHS will employ "ethical hackers" to look for weaknesses in health computer networks, not just react to breaches – Such hackers use the same tactics seen in cyber-attacks to help organisations spot weak points.

--------------------------

UPDATES: The UK's Information Commissioner's Office states that organisations must take "appropriate" security measures to protect personal data and consider notifying the individuals concerned if there is a breach.

--------------------------

In May, one-third of UK health trusts were hit by the WannaCry worm, which demanded cash to unlock infected PCs.

In a statement, Dan Taylor, head of the data security centre at NHS Digital, said the centre would create and run a "near-real-time monitoring and alerting service that covers the whole health and care system".

UKUAJI WA MATUMIZI YA TEHAMA WAONGEZA UHALIFU MTANDAO

Mataifa mengi yameendelea kuwekeza katika sekta ya TEHAMA ili kurahisisha huduma mbali mbali kwa jamii za mataifa husika – Ikiwa ni pamoja na mawasiliano, huduma za Afya, kifedha na hata usafirishaji ambapo TEHAMA imekua ikitumika kwa kiwango cha juu zaidi tofauti na miaka iliyopita.

---------------------

UPDATE: Apple has addressed a glitch that caused some iPhones to unexpectedly start auto-correcting the letter "i" to a capital "A" and a question mark.

--------------------

Kuwepo na Kinacho tambulika kama “Internet of things (IoT)” ambapo kimsingi ni kila kitu kitakua kimeunganishwa kwenye mtandao kunapelekea kuendelea kukua kwa uhalifu mtandao ambapo madhara yake yanategemewa kua makubwa zaidi ya ilivyo zoeleka.

Katika kipindi cha mwaka 2016/2017 Tumeshuhudia matukio kadhaa ya kihalifu mtandao ambapo mataifa mengi yamejikuta katika hasara kubwa kutokana na mashambulizi mtandao.

--------------------

NEWS UPDATE: A group of researchers and private industry experts, along with DHS officials, remotely hacked a Boeing 757 airplane owned by the DHS that was parked at the airport in Atlantic City, New Jersey.

--------------------

ESTONIA: CYBER THREAT FORCES ONLINE GOVERNMENT SERVICES LOCK-DOWN

Estonia's Prime Minister Juri Ratas.

Estonian Government plans to block citizens from accessing online government services from Saturday (04 – Nov – 2017) while it works to fix a security flaw.

A problem with the country's national identity cards was identified earlier this year, affecting 760,000 people.

The flaw could let attackers decrypt private data or impersonate citizens.

Those who have not had their cards updated with new security certificates will no longer be able to use them to access some services from midnight.

Estonia's digital ID system lets citizens access government and some private services such as medical records, voting and banking.

But security researchers found the encryption used in the ID cards was easily cracked which could, if exploited, let attackers impersonate people.

IDADI KUBWA YA PROGRAM TUMISHI ZIMEENDELEA KUIBA TAARIFA ZA WATUMIAJI

Nchini Tanzania Matumizi ya TEHAMA yame endelea kukua katika maeneo mbali mbali. Hii ime endelea kurahisisha upatikananaji wa huduma muhimu na kuwezesha watu kuendelea kuwasiliana kwa urahisi.

Viwanda na Taasisi mbali mbali zimeendelea kutumia TEHAMA ili kukuza ufanisi na kufikia watu wengi kwa kipindi kifupi. Miamala ya kifedha, ukusanyaji kodi, pamoja na mawasiliano ni baadhi tu ya mambo yanayo wezeshwa na TEHAMA nchini.

Usalama wa mifumo ya TEHAMA ni moja ya jambo muhimu sana ambapo Tanzania inapaswa kuwekeza ili kujilinda na aina zozote za kialifu mtandao ambazo zinaweza kupelekea huduma muhimu kutopatikana na hatimae uchumi wa Nchi kuyumba.

-------------------

STATISTICS: Tanzania installed 27,000 KMS of optic fiber connecting all regions and it has 7 mobile operators – About 94% network coverage, 85% SIM penetration and 40% internet users.

-------------------

Mkutano mkuu wa mwaka wa wataalam wa TEHAMA nchini Tanzania ulio fanyika mwishoni mwa wiki iliyopita (26 – 27, Octoba – 2017) jijini Dar-es salaam ulipata kujadili usalama mtandao ambapo mada kadhaa zilizo jikita katika kutoa elimu ya namna bora za kuimarisha usalama wa mifumo yetu zili wasilishwa na kujadiliwa.

THE RISE OF FINANCIAL CYBER THREATS

FINANCIAL threats are still profitable for cyber criminals and, therefore, continue to be an enduring part of the threat landscape. From financial Trojans that attack online banking, to attacks against automated teller machines (ATMs) and fraudulent interbank transactions, there are many different attack vectors utilised by criminals.

Symantec predicted in 2015, there was an increase in attacks against corporations and financial institutions during 2016. This was evident from a series of high-value heists targeting Society for Worldwide Interbank Financial Telecommunication (Swift) customers. While there is no evidence of any such high value heists on Swift customers this year, the 2016 attacks saw several such institutions lose millions of dollars to cyber criminals and nation state-supported attackers such as the Lazarus group.

On average, 38 per cent of the financial threats we detected in 2016 were found in large business locations. Most of these infection attempts were not targeted attacks but were instead due to widespread email campaigns. Although we have seen a 36 per cent decrease in detection numbers for financial malware in 2016, this is mainly due to earlier detection in the attack chain and more focused attacks.

KUENDELEA KUKUA KWA UHALIFU MTANDAO - NANI WA KULAUMIWA?

Kumeendelea kukua kwa uhalifu mtandao maeneo mengi duniani – Huku baadhi wakitafsiri hili linatokana na wana usalama mtandao kuonekana kulemewa (Kuzidiwa) na wahalifu mtandao.

Hili limepingwa katika kikao kilicho kamilika mwishoni mwa wiki iliyopita, Nchini Afrika kusini ambapo binafsi nilishiriki na kuzungumza na wenzangu kuhusiana na namna sahihi ya uchunguzi wa makosa ya kimtandao – Kubwa nililozungumzia ilikua ni kuwa rudisha wenzangu kwenye mstari kwa kuwakumbusha juu ya taratibu tulizojiwekea na zinazo takiwa kufatwa na mataifa yote duniani.

Pamoja na mambo mengine, nilikumbusha umuhimu kuhakiki hatua zote za uchunguzi zinakua katika maandishi – Zaidi, nilicho zungumza pia kinaweza kupatikana katika Habari inayoweza kusomeka “HAPA”

Kuhusiana na ukuwaji wa uhalifu mtandao kila mmoja wetu amekiri hili halisababishwi na wana usalama mtandao  kuzidiwa nguvu – Lawama imeonekana kuelekezwa kwa mataifa mbali mbali pamoja na watumiaji wa mwisho “Users”.

SAMSUNG SMARTCAM FALLS VICTIM TO CYBER ATTACK

Today all devices in our home are becoming more connected to networks than ever to make our lives easy. But what's worrisome is that these connected devices can be turned against us, anytime, due to lack of stringent security measures and insecure encryption mechanisms implemented in this Internet of Things (IoTs) devices.

Cam devices have among those connected devices we mostly use for many reasons – We have witness many incidents were these devises falling victims to Cyberattacks. The most recent victim of this issue is the Samsung's range of SmartCam home security cameras – Cybercriminals find their way into Samsung SmartCam, It's not necessary to break into your computer or Smartphone to spy on you.

Earlier today, I addressed on How we can fight the growing #Cybercrimes to the management of the Ministry of WT&C - I urge on collaboration. pic.twitter.com/883j2aoqV0

— YUSUPH KILEO (@YUSUPHKILEO) December 30, 2016

Hackers have confirmed it is too easy to hijack the popular Samsung SmartCam security cameras, as they contain a critical remote code execution (RCE) vulnerability that could let hackers gain root access and take full control of these devices.

SmartCam is one of the Samsung's SmartThings ranges of devices, which allows its users to connect, manage, monitor and control "smart" devices in their home using their smartphones or tablets.