On 1 June 2019, 18 Government of Kenya websites were hacked and defaced by a group who call themselves the Kurd Electronic Team. It took over 24 hours for Kenya's ICT Authority to restore them back, with people questioning the government’s capacity to deal with cyber-attacks and protect Kenyans’ data.
This was also not the first time, during 2012, a single hacker had managed to bring down 103 Government of Kenya websites.
Was the government caught napping in terms of cybersecurity?
It is not easy to tell.
Kenya lacks cybersecurity skills
Organizations invest a lot of money and resources in cybersecurity, and most of the cyber-attacks are usually stopped before they happen. However, cybersecurity, just like normal physical security, is something that is alive and growing. It keeps changing, and yesterday’s tactics may not work today.
Cyber-attacks are here to stay and have been said to cost Kenya about KES 25,9 billion in 2018. There is also an acute shortage of skilled cybersecurity personnel in the country, and the government is known not to be very competitive in hiring and retaining the best talent. However, even with the best personnel and resources, attacks still do occur.
Hackers will hack
As far as cyber-attacks are concerned, it is always a matter of when not if. If some skilled hackers decide that they must hack your website, chances are high that they will do it one day. It is just a matter of time and resources.
This has seen the rise of hackers even from nondescript places such as North Korea attacking the USA. In the corporate world, transport and logistics conglomerate Maersk has experienced one of the most brutal cyber-attacks, which totaled its operations globally for several days and cost them about KES 30 billion. A Saudi petrochemical company was also hit by a cyber-attack last year, with attackers targeting to disrupt the safe operations of the plant and possibly cause massive explosions.
Facebook, Yahoo, Adobe and others have also faced attacks. Cyber-attacks are everywhere, and it is just a matter of time before another African government or organization is attacked.
How can governments and corporates stay safe?
There is no easy solution. It will involve hard work, which means keeping a step ahead of potential cyber attackers. This is costly and it is already a multi-billion dollar industry.
Currently, Israel stands out as the leader in cybersecurity, with great innovations from the country helping to tackle some of the most serious cybersecurity problems in the world today. However, the first line of defense is not just these sophisticated tools, but more about the ability to withstand and rise up after a cyber-attack. This is why some experts today are talking more about cyber resilience rather than cybersecurity.
Cyber resilience refers to an entity’s ability to continuously deliver the intended outcome despite adverse cyber events. In the case of the Kenyan government, this would mean being able to restore the websites that were defaced and securing those servers used in hosting them.
The government of Kenya needs to continuously increase its capacity to stop these attacks, but also improve on the time taken to get back in case of an attack. I hope the next time this happens (because it will), it will take a shorter time to get back online.