The Directorate of Criminal Investigations (DCI) has warned Kenyans to improve the security of their computers and mobile phones in order to protect themselves from cyber threats.
In a statement on October 22, the DCI urged Kenyans to protect themselves against cyber threats such as online fraud, data loss and identity theft.
"Computer and mobile device security are crucial for protecting personal and professional information from unauthorized access, theft, or damage."
"This security is important to prevent financial loss, identity theft, and damage to personal or organizational networks from threats like malware, phishing, and ransomware," part of DCI statement reads.
DCI, in the statement, gave several ways in which Kenyans can improve their cyber security.
Computer Device Security
DCI stated that individuals can use the system hardening method. This is where a person can update the operating system and software regularly, turning on full-disk encryption, disabling unused programs and ports, and using standard user accounts instead of admin accounts.
The other step recommended by the agency is Network and Access Controls, where DCI also advised use of firewalls and intrusion prevention systems such as Windows Defender Firewall, connecting through Virtual Private Networks (VPNs), and turning on multifactor authentication (MFA) when logging in remotely.
The agency added that important systems should be separated from normal user computers to reduce risk.
Agency in the statement stated that in endpoint protection, individuals can install Endpoint Detection and Response (EDR) or Extended Detection and Response (XDR) software, collect system logs for monitoring, and use anti-malware programs with real-time protection.
Users can also protect their data by encrypting important files, backing them up regularly, and controlling who can access sensitive information.
Mobile Device Security
On Mobile device security, DCI stated that mobile phones and tablets are highly targeted by cybercriminals since they store personal and work data.
According to DCI, to stay safe, Kenyans are advised to keep their operating systems and apps updated from trusted stores such as Apple App Store and Google Play Store.
Additionally, they should also enable device encryption and screen locks, avoid rooting or jailbreaking, and turn off developer options.
Agency encouraged the use of Mobile Device Management (MDM) tools, which aid in enforcing company rules such as strong passwords and data encryption. It also allow users to lock, find, or erase their phones if they get lost by using features like “Find My Phone.”
For app and Network security, users are urged to install apps from trusted sources to avoid giving unnecessary app permissions. They are also warned to stay away from public Wi-Fi, instead, they should use VPNs and secure DNS options like DNS over TLS (DoT) or DNS over HTTPS (DoH).
DCI noted that Kenyans should turn off the option that allows device to automatically connect to open networks.
In the statement, DCI added that people should always back up their mobile data using encrypted cloud storage by enabling remote wipe options such as Android’s Find My Device or Apple’s Find My iPhone in case of loss.
