Tech World

For startups, user growth, product growth, virality, marketing usually goes on the top of their priority list. As part of product planning cycles, embedding information security into their product/service is the last concern for most startups. Which is deeply ignored here? Information and data security. Often you see devops engineers, systems engineers, infrastructure engineers or system administrators wear the security hat in these startups and performs some of the small security fixes or patches. Even though they can perform research on the procedures to apply patches, harden databases, or implement remediation as a result of the industry breaches, they might not take every decision or option from security perspective. Consider the Code Spaces startup breach that basically caused them to go out of business due to improper hardening of the root passwords and not following the AWS security best practices. This deeply ignored lack of security awareness has actually...

Cyber security was a key focus during the 5th Kenya Internet Governance Forum (KIGF) held last week at Strathmore University under the theme 'Connecting Counties for Enhanced Multi-stakeholder Internet Governance'. The key points raised at the forum - which brought together representatives from government, private sector, civil society, academia as well as the internet community - revolved around the emerging legal issues and challenges relating cyber security. According to the Kenya Cyber Security Strategy released in February 2014, criminal organizations and hack-tivists from all over the world are - and will continue - to exploit ICT vulnerabilities in Kenya as the country matures into an Information Society, adding that country faces an increasingly evolving cyber threat landscape. Currently, Kenya ranks fifth in terms of hacking globally. To deal with the threat of cyber insecurity and protect data, Kenya's ICT Ministry developed the National Cyber Se...