Ransomware, avoid being a victim

Posted on June 5, 2017 | 1 comment

To-date, no one knows what she did on that laptop but the Executive Director of a leading government entity under the Ministry of Finance got her computer locked up by ransomware. All her information was encrypted and she eventually had to fork out millions of shillings to regain access.

Many of us are conversant with viruses and how they affect our computers or phones. However, they are just one category of crooked software that the bad guys use to mess up technology consumers.

Ransomware is malware (malicious software) that has the tendency to block you from accessing your files or data on that electronic gadget of yours. To regain the access, it requires you to pay a ransom fee.

Ransomware has been with us for a number of years but only gained prominence recently when the largest syndicated attack was launched. WannaCry has been the most prominent ransomware to-date that has had a significant impact on global computer systems. It begun on 12th May 2017 and within hours of rolling out, over two hundred thousand (200,000) machines across multiple countries had fallen victim.

How does it work?

Once the software infects a computer, it then proceeds to communicate to a central server using the very internet access on that computer. When in contact with the server, it requests for further instructions after which encryption commences on the infected computer using the instructions obtained. When the encryption is completed on all files, a message is displayed on the screen requesting for payment to decrypt the files with a threat to destroy this information if no action is taken.

Essentially, it needs all or some of the following;

  • A data network in order to spread from one computer to the other

  • A seemingly legitimate file/document through which it can be propagated

  • Email

  • A vulnerable computer operating system

What are the tell-tale signs of Ransomware?

Ransomware manifests in some or all of the following ways;

  • Encryption of all types of data/files

  • Display of hijack message to alert you

  • Request for payment in BitCoins

  • Transfers data to the central server eg passwords and email addresses

among others.

How can I avoid becoming a victim of Ransomware?

  1. Backup: Let us face it, the damage caused by ransomware boils down to denying you access to your data. If that is the case, then having a frequently updated backup of all your computer data will mean that no amount of threats can make you yield to the demands of attackers. You can simply set up your computer afresh and restore your data from the backup.

  2. Software Updates: First of all, ensure that you are running legitimate software on your computer (avoid pirated copies especially of Operating Systems). With legit software, you need to keep updating it as per the advisory of the company that supplies the software. There is always a good reason why they come up with frequent updates.

  3. Anti-Virus: It is advised that you make the presence of a recognised anti-virus software on your computer a must. Frequent database and engine updates are crucial too, considering that the suppliers of this software are always evolving it to meet the ever changing tactics of the hackers out there. Good anti-virus software has the ability to prevent some of these fishy emails or files from accessing your computer.

  4. Be slow to trust: In real life, we are always suspicious of that stranger who approaches us with a proposition on the roadside. Why then do we drop our guard and choose to trust any email we receive promising all sorts of things to us? Hackers are using Phishing Emails a lot lately to trick users into clicking certain links that then proceed to download the malicious software onto the computer. Other avenues are malicious website adverts and apps.

If you run an organisation, this is the time for you to have a comprehensive and regular Cyber Security training programme that will ensure that your staff are always aware about the dangers lurking out there on the internet and how they can grossly affect your operations.

Scenario1: You get to office one monday morning ready to complete a key business proposals due to be submitted before the end of day only to be met by a ransom notice on all the office network computers.

Scenario2: Your accountant is misled by an email into enabling macros as he tries to open an attachment that has been sent to him. The office accounting software runs off his computer and within a few minutes, the ransom notice pops up. Invoices can’t be generated or printed, all your accounting records are inaccessible and the tax authorities are demanding some overdue reconciliations.

These scenes can be real, but you have a choice to avoid seeing them happen. Do you have a need for guidance on this and other cyber security related matters? Do not hesitate to contact me on the email given below.

Let us fight Ransomware.

James Wire is a Small Business and Technology Consultant based in Kampala, Uganda

Follow @wirejames on Twitter.

Email lunghabo [at] gmail [dot] com

1 Comment

Posted in Technology

SMACK, Namilyango, Gayaza, Lubaale Mubbe

Posted on May 19, 2017 | 2 comments

There is a Luganda saying that goes like, “Bakuuma mbugo, Lubaale mubbe.” Its nearest English equivalent is, “closing the stable door after the horse has bolted.”

This saying is purported to have been coined during the time of Kabaka Jjunju (1780 – 1797). Baganda families had gods they worshipped to suit different needs in their lives. Each family had a select member who was in charge of keeping these gods. It was a prestigious role that many envied. These gods apparently were “kept” wrapped up in bark cloth (mbugo). Due to one reason or another, these gods could be stolen or misused by a member of the family or someone else who had the ability to “steal” them. So, while the guardian of the gods thought that he had them in safe custody on behalf of the family, the opposite would be the case. The gods were already stolen and he was just keeping bark cloth. Hence the saying which is loosely translated as, “They are keeping bark cloth, the gods were stolen.

A while back, I wrote an article warning the traditional giant schools in the form of Namilyango, SMACK, Buddo, Gayaza etal that they were digging their own graves. Alot of criticism was directed at me including allegations that I was a hater among other flimsy pedestrian conclusions. Today, I came across the list of admissions for the Bachelor of Medicine and Surgery at Makerere University, government sponsored and it read as follows:

No.

School

Number of Students

1

St. Mary’s Kitende

13

2

Uganda Martyrs Namugongo

12

3

Bishop Kihangire

5

4

Kiira College

4

5

St. Mary’s Namagunga

4

6

Kings College Buddo

4

7

Seeta High Main

3

8

Naalya Main

3

9

Mengo SSS

2

10

St. Julian

2

11

Gombe SS

2

12

Nabisunsa Girls

2

13

St. Mary’s Ruhoroza

2

14

Ntare School

1

15

Mbarara High

1

16

Seroma Christian High School

1

17

Seeta High Mukono

1

18

Ndejje

1

19

Gayaza

1

Namilyango College

00

St. Mary’s College Kisubi

00

The government scholarship admission for this same degree for those that joined Makerere University in 1993 had at least Ten (10) guys from St. Mary’s College Kisubi. It was basically an extension of old students from either Namagunga, Gayaza, SMACK, Buddo, Namilyango, Mwiri and a few other schools like Makerere College.

It is shocking to find that in 2017, Gayaza was just lucky to get only One (1) candidate on state sponsorship while SMACK and Namilyango contribute zero (0) students for this course. This is an abomination and a fulfillment of what I did warn a while back.

In a scathing article that I wrote on the traditional schools, I stated thus, “… one thing I can admit is that the prioritisation of quantity over quality has put me off totally to the extent that I wouldn’t recommend anyone with a radical mindset like mine to take their child to those traditional big guns. It is time they rethought their strategy otherwise today’s perceived minnows will eclipse them tomorrow when their products excel where it matters …

If there is one thing that defines old students of the traditional high performing schools, it’s the pride we exude as having been part of an elite class as well as littering the professions that are deemed to matter in the world of employment. While I am proud of the fact that I can walk into any office in this land and find someone I know as an OB or OG of sorts, I must say, the writing is on the wall for the traditional schools. Having taken for granted this superiority, they gave room to the minnows to work their way upwards and eclipse them.

I did come across an argument on Facebook where those allied to the traditional schools were busy bashing old students from St Mary’s Kitende claiming that the best they can do is to operate photocopiers in the various city shopping arcades. The results I just shared should be a wake up call, the Kitendes you have been underlooking are annexing every inch of land that you had been taking for granted as a birth right for over a century. First they swept the arts courses, now they are on an onslaught for sciences.

Traditional schools have always given their students this aura of invincibility and entitlement making them feel like royals of sorts. Unfortunately, in reality, like the luganda saying I quoted earlier, apart from the structures and historical legacies they have, these traditional schools seem to have nothing to offer lately. Lubaale Mubbe !!!!! Wake up guys.

I consider this a critical moment for the traditional schools. Over the past twenty something years, they have digressed from working towards the set founding goals of their institutions and instead opted to play to the gallery. By abandoning the core values they represented including sticking to the recommended admission procedures, they fell into the trap of populism. Matters were worsened when bribery became the norm. I know of someone whose son was not certain of getting to Kings College Buddo for Senior One and this led him to execute plan B which was SMACK where he got a place after parting with UGX 4 Million. Today he is happy and chest thumping that he has a child at SMACK but I want to remind him that, Lubaale Mubbe.

At A-Level, these traditional schools admit star studded students who do not even need the slightest push to excel. How the hell can you tell me that they can fail to convert them into nationwide leading performers at the University entry exams? It means that either the children that are admitted have falsified results or the teachers responsible for teaching them are sleeping on duty. Lubaale Mubbe.

The traditional schools in a bid to play to the gallery have opted to compete on the same terms as the private schools that are fast rising. They forget that what they were set out to offer is more than just good grades in class. They fail to impress this need upon the aspiring students or parents and instead lure them with the promise of high grades. If it is grades that one is pursuing solely, then they can no longer compete with many private schools that seem to have mastered the art of churning out good grades. However, if they can look inwardly and come up with a revised offer which has a linkage with the vision of the founders, they will retain a lot of relevance despite not churning out high grades academically. After all, we all know that success in life is not necessarily directly proportional to the grades scored in school.

As for King’s College Buddo and St. Mary’s Namagunga, with 4 a piece heading for the Medicine class, I don’t encourage you to chest thump. It is a sign that you too are slowly descending to the place where Namilyango and SMACK have already bought plots of land, Zero (0) contribution.

Time for change. To effect this change, there is going to have to be a total overhaul of the mindsets starting right from the Board Members of the Schools, School Administrations, Old Students Associations, Students and Parents. Otherwise, Bye Bye SMACK, Namilyango, Gayaza; Welcome St. Mary’s Kitende and Uganda Martyrs Namugongo.

James Wire is a Small Business and Technology Consultant based in Kampala, Uganda

Follow @wirejames on Twitter.

Email lunghabo [at] gmail [dot] com

Other Articles of Interest:

2 Comments

Posted in General

Tagged , , , , , , , , , ,