<div dir="ltr"> Like any act of vandalism, Bitcoin industry experts and BitPesa as a company do not recommend paying this ransom. Rather - hiring a security expert and installing tighter cyber-security controls are the solution.<div><br></div><div>If the ransom is paid, they will just do it again. There should have been more stringent password policy and controls at UoN.</div><div><br></div><div>Just our humble opinion. Has anyone else experienced a hack like this?</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Jul 14, 2016 at 12:13 PM, Grace Githaiga via kictanet <span dir="ltr"><<a href="mailto:kictanet@lists.kictanet.or.ke" target="_blank">kictanet@lists.kictanet.or.ke</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div><div dir="ltr">Someone has hacked the twitter handle for UoN <a href="https://twitter.com/ict_uonbi" target="_blank">https://twitter.com/ict_uonbi</a>, and taken control of it. He has asked for 10BTC and posted the account where the BTC should be sent to. <br><br>The exchange rate is 1 bitcoin is USD 650 <a href="https://www.google.com/?gws_rd=ssl#q=10btc+to+%24" target="_blank"></a><a href="https://www.google.com/?gws_rd=ssl#q=10btc+to+%24" target="_blank">https://www.google.com/?gws_rd=ssl#q=10btc+to+%24</a><br><br>Then to demonstrate that this is not a joke, the person(s) have started posting passwords for different systems and Emails accounts for UoN.<br><br>Not sure though if these are the real passwords or its just empty threats. <br><br>It would be interesting to hear from experts.<br><br>Rgds<br>GG<br><br>Date: Thu, 14 Jul 2016 11:26:24 +0300<br><div>To: <a href="mailto:security@lists.my.co.ke" target="_blank">security@lists.my.co.ke</a><br>Subject: [Security Forum] UON hacked, ransomed<br>From: <a href="mailto:security@lists.my.co.ke" target="_blank">security@lists.my.co.ke</a><br><br><p dir="ltr">In other news, <br>
<a href="https://twitter.com/ict_uonbi" target="_blank">https://twitter.com/ict_uonbi</a></p>
<br>_______________________________________________
Security mailing list
<a href="mailto:Security@lists.my.co.ke" target="_blank">Security@lists.my.co.ke</a>
<a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/security" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/security</a></div> </div></div>
<br>_______________________________________________<br>
kictanet mailing list<br>
<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
<a href="https://lists.kictanet.or.ke/mailman/listinfo/kictanet" rel="noreferrer" target="_blank">https://lists.kictanet.or.ke/mailman/listinfo/kictanet</a><br>
<br>
Unsubscribe or change your options at <a href="https://lists.kictanet.or.ke/mailman/options/kictanet/elizabeth%40bitpesa.co" rel="noreferrer" target="_blank">https://lists.kictanet.or.ke/mailman/options/kictanet/elizabeth%40bitpesa.co</a><br>
<br>
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.<br>
<br>
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.<br></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr">Elizabeth Rossiello<div>CEO and Co-Founder</div><div><b><font size="4">BitPESA</font></b></div><div><span style="font-size:12.8px">Nigeria: +234 909 345 4135<br>Kenya: +254 710 891 851</span><br></div><div>Skype: erossiello</div></div></div></div></div>
</div>