Mail from a fake Australian company with a request for a quote. The .zip attachment contains two .exe files. These, if opened, start the malware infection.
The Communications Authority (CA) of Kenya: The country is suffering increasing cases of cybercrimes, especially on mobile. In October-December 2018 quarter the cyber attacks were 10.2 million. Mostly Malware, Web Application, Botnet/DDoS, System Misconfiguration and Online Abuse driven
Kenya is suffering increasing cases of cybercrime attacks. Especially on mobile. The alert has been launched by the Communications Authority (CA) of the african country, that released some statistics about the phenomenon. In the October-December 2018 period, there have been more than 10.2 million incidents, while in the previous those were 3.8 million. The top threats to the local cyber security are Malware (9,026,924), Web Application Attacks (737,289), Botnet/DDoS (453,371), System Misconfiguration (3,449), and Online Abuse (158) which included online fraud, hate speech, incitement to violence and fake news. Moreover, in the quarter were issued 12,197 cyber threat advisories, 91% more than the previous period. According to the CA, in particular there is a rise in cases of malware and the sale of stolen data and credentials, including personal data and credit card information.
Cyber criminals target end-users who have limited cyber security skills
The increasing cyber attacks in Kenya are due to some elements. First of all, ever more people in the african country possess a smartphone, connected to the Web. According to the CA, in fact, during Oct-Dec 2018, active mobile subscriptions stood at 49.5 million, up from 46.6 million in previous quarter, representing a 6.2 per cent growth. They navigate in popular online stores to catch fashionable APPS, but these platforms are full of fake mobile applications. So they are infected very easily. Furthermore, the cybercrime exploit the misconfigured systems to bypass their cyber security and targets end-users who have limited IT skills. After that, Nairobi has been forced to seek help from international partners. Both to increase the national critical infrastructures cyber defences and to “educate” citizens on the high risks related to the cyberspace and their mobile phones.