× Business BUSINESS MOTORING SHIPPING & LOGISTICS DR PESA FINANCIAL STANDARD Digital News Videos Health & Science Lifestyle Opinion Education Columnists Moi Cabinets Arts & Culture Fact Check Podcasts E-Paper Lifestyle & Entertainment Nairobian Entertainment Eve Woman Travelog TV Stations KTN Home KTN News BTV KTN Farmers TV Radio Stations Radio Maisha Spice FM Vybez Radio Enterprise VAS E-Learning Digger Classified Jobs Games Crosswords Sudoku The Standard Group Corporate Contact Us Rate Card Vacancies DCX O.M Portal Corporate Email RMS

Hackers steal Sh 30billion from Kenya's financial institutions

By Cyrus Ombati | Mar 9th 2017 | 2 min read
By Cyrus Ombati | March 9th 2017

NAIROBI, KENYA: Financial institutions lost a staggering Sh30 billion to cyber criminals who hacked their systems in the last two years.

Records obtained by detectives show the institutions lost Sh17 billion last year and Sh14 billion in 2015.
This revelation came after a multi-agency team arrested at least 11 suspects in an operation in Nairobi.

Those in custody include a former police officer who worked with cybercrime unit and a former Kenya Revenue Authority official.

Detectives have blamed the trend on technological advancement, which has made Kenya a soft target by cyber criminals.

Among institutions targeted include Kenya Revenue Authority (KRA), National Transport and Safety Authority (NTSA), Saccos and the Independent Electoral and Boundaries Commission (IEBC).

The criminals hacked the systems of the institutions in the period stealing data and money undetected.
Among those in custody include international criminals who have been colluding with locals in committing the crimes.

The criminals also have international contacts to countries such as Moldova, Belgium and France.
Investigations show they conspire with employees of the targeted institutions who provide them with access to the networks remotely using Remote Access Tools (RATS) and manipulate records in the computer system.
The hackers use other tools such as key loggers, Remote Access Tools (RATs) such as GoToMyPc, Blackshades, Progdata and malware which they install into a PC on the institution's network.
KRA officials on Wednesday evening demonstrated how one of their former employee planted a software in one of their system which was sending crucial data to his system.

The former employee had formed an international ring that installed malware into the system that allowed them take date from the institution's system hence steal money.

This prompted an operation that saw the suspects being nabbed from their residences in Kilimani area. Among those in custody is former police officer Calvin Otieno who had been working with the DCI's cyber crime unit, the former KRA employee and two US citizens.

Head of Special Crimes Prevention Unit Noah Katumo said they seized an AK47 rifle and drugs from the suspects' residences.

Share this story
Nestlé launches reformulated Nescafe
Nestlé Kenya has launched a new reformulated NESCAFÉ® 3in1 giving the product a creamier taste in a move to tap into the increased coffee consumption by youth and the emerging urbanised middle class in the country.
China rejected Kenya's request for Sh32.8b debt moratorium
China is Kenya’s largest bilateral lender with an outstanding debt of Sh692 billion.