[kictanet] CA's cyber threat reports

BRIGHT GAMELI brightzeed at gmail.com
Mon Jun 5 11:29:27 EAT 2017 

@Andrew

Using A website like Shodan.io, all ports in Kenya can be scanned which is
passive and can be done by anyone so far as they have an email account.

I believe CERT is only alerting people to close those ports as they might
be vulnerable.
It will be in the interest of the admins to secure their infrastructure or
not if they feel the RDP port does not pose a threat.

~ze3D~

On Mon, Jun 5, 2017 at 11:02 AM, Admin CampusCiti via kictanet <
kictanet at lists.kictanet.or.ke> wrote:

> Andrew
>
> Please break it down to us who are technically challenged. :-)
>
> What does this really mean? In layman' language.
>
> *Ali Hussein*
> *Hussein & Associates*
> +254 0713 601113 <0713%20601113> / 0770906375 <0770%20906375>
>
> Twitter: @AliHKassim
>
> Skype: abu-jomo
>
> LinkedIn: http://ke.linkedin.com/in/alihkassim
> <http://ke.linkedin.com/in/alihkassim>
>
> Blog: www.alyhussein.com
>
> "Discovery consists in seeing what everyone else has seen and thinking
> what no one else has thought".  ~ Albert Szent-Györgyi
>
> Sent from my iPad
>
> On 5 Jun 2017, at 10:08 AM, Andrew Alston via kictanet <
> kictanet at lists.kictanet.or.ke> wrote:
>
> Hi All,
>
>
>
> This morning I got an interesting email from cirt at ca.go.ke as regards
> open RDP ports on the network.
>
>
>
> Now, I’ve got a few questions about this -
>
>
>
> a.)     Has anyone else had similar reports
>
> b.)    Ports can be open for many reasons – and they sit on private
> companies machines and companies have the right to firewall or not firewall
> dependent on a multitude of reasons – why are these being put out as an
> incident report
>
> c.)     Under what premise does anyone – be they cert or otherwise – have
> the authority to run scans against private networks and systems – I was
> under the impression that port scanning private systems was not allowed?
>
>
>
> I’m kinda concerned here when a report shows up that clearly indicates
> that targeted scans have been made – particularly since some of the IP
> addresses in that report are not even inside Kenya and sit on IP addresses
> belonging to clients who have in no way authorized security scans against
> themselves.
>
>
>
> Anyone got any thoughts or comments?
>
>
>
> Andrew
>
>
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
> Twitter: http://twitter.com/kictanet
> Facebook: https://www.facebook.com/KICTANet/
>
> Unsubscribe or change your options at https://lists.kictanet.or.ke/
> mailman/options/kictanet/info%40campusciti.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
> Twitter: http://twitter.com/kictanet
> Facebook: https://www.facebook.com/KICTANet/
>
> Unsubscribe or change your options at https://lists.kictanet.or.ke/
> mailman/options/kictanet/brightzeed%40gmail.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20170605/c14f3269/attachment.htm>

More information about the KICTANet mailing list