Skip to main content

A bad case of writer's block

Of course the Image is copied from
http://calvinandhobbes.wikia.com/wiki/Writer%27s_Block

On Wednesday morning, like any other Wednesday, I emptied my waste basket into a polythene "paper" bag, and left it outside for collection, before boarding a matatu to work.

However, unlike other Wednesdays, I received a text message from a friend, telling me that he had "seen my story in the Nation". I ignored it, thinking that probably he had seeing a similar story , with facts similar and assumed that someone had copied my story.

Getting into the office, I was checking on recent stories I have written and how other media houses  reported them, when I stumbled onto an article titled "Tech gurus caught napping as 103 websites hacked" .

While the story of the hacking was exposed on the Security Forum, I was arguably the first journalist to cover it, with a little bit more facts that I added from some research and my experience.


I was therefore surprised to find lots of similarities between what I had written and what the journalist had written, (Note that the original article has been changed after I raised the issue) notably:

  • Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed. The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking. 
I was surprised that in addition to myself, here was another journalist who had made a general assumption that the hacking exploited bugs. Many websites nowadays are hacked from a technique known as server side scripting.

In addition, this was suspiciously similar to sentences I had written in my article.
The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking
Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed.
  •  In a message in the forum, the hacker says:
    show off by me...
    thanks for tutorial in www.code-security.com all...
    i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
What I wrote. I have preserved the formatting, including the use of italics.
In a message in the forum, the hacker says

show off by me...
thanks for tutorial in www.code-security.com all...
i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
  • The government has reportedly moved fast to take the affected websites offline through a Cyber Incidence Response Team (CIRT) based at the Communications Commission of Kenya.
  • The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. In a comment, Vincent Ngundi who heads CIRT said: "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
What I wrote:
The government has moved fast to take the affected websites offline through a Cyber Incidence Response Team(CIRT) based at the Communications Commission of Kenya. The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. Vincent Ngundi who heads CIRT has responded with the following comment "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
More
  • The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker.
  • The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system:  
What I wrote:
The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker. The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system.
I hope the journalist knows that the government websites are normally hosted at treasury because he did his Computer Science degree attachment at the Ministry of Co-operative Development and Marketing, and had to work with a website hosted at the treasury.

I hope the journalist knows that Direxer's site is actually a blog.

I hope the journalist  knows that the sites run Joomla because of a Firefox plugin known as Wappalyzer , which can show what popular technologies a site is using.

I hope the journalist knows Forum Code Security and code-security.net are the same.

I hope the journalist really made sure Direxer is Indonesian, cause in a hurry to post my article, I didn't.

I hope the journalist in addition to numbering the hacked sites to make sure they were 103 , he also confirmed that they had been hacked. I only checked a few.


I hope the journalist does know that he is listed as the author of this article too , and so am I.


I hope to grow my career under the journalist, who is also the president of the Kenya ICT Reporters Association (KIRA).

KIRA seeks to herald ICT journalism in Kenya and the region to the peak, by:
  • "keep pace and understand how the emerging technology tools like Twitter, Skype, Facebook, Youtube, google reader, RSS feeds, news alerts, blogs, websites, etc can be professionally utilised by journalists."
  • need to blog, tweet, skype and subscribe to feeds to remain on top of news.
A small correction, RSS can be traced back to 1995 and Google Reader is an RSS Feed Reader.

You can find out more about KIRA here, where the president also notes that "not many journalists are competent in this beat thus the skewed coverage of ICT matters" .


Below is the text of the original peice as it appeared on the Business Daily.

By JAMES RATEMO, jratemo@ke.nationmedia.com  (email the author)

Posted  Tuesday, January 17  2012 at  22:59

An Indonesian hacker has caught Kenya government tech gurus napping. In an unprecedented occurrence, an Indonesian hacker known as direxer has taken down 103 government of Kenya websites. 

According to a Tuesday discussion on Kenya's online tech forum, Kictanet, the hacker is part of an online Indonesian security forum known as Forum Code Security and says he took down the websites following tutorials from the forum.
The news of the hacking was first exposed on the site code-security.net/archives/114, a forum on code security.
The title on the website read: “Joint Discussion — Forum on Code Security”.
"Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed. The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking.
In a message in the forum, the hacker says:
show off by me...
thanks for tutorial in www.code-security.com all...
i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
The government has reportedly moved fast to take the affected websites offline through a Cyber Incidence Response Team (CIRT) based at the Communications Commission of Kenya.

The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. In a comment, Vincent Ngundi who heads CIRT said: "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker.
The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system:
Also see details here












Comments

Popular posts from this blog

RE: Appointment as Ambassador of the Republic of Kenya to The United States of America

Image: South African marriage courtesy The Telegraph ( http://www.telegraph.co.uk/news/worldnews/africaandindianocean/southafrica/6237922/South-African-man-marries-4-women-at-same-ceremony.html  ) Dennis Kioko, Address Pending. President to-be-elect, Republic of Kenya, Address Pending, Again. Dear Sirs/Madams, RE: Appointment as Ambassador of the Republic of Kenya to The United States of America  I would like to draw your attention to news reported across various sections of the press (way behind your daily portraits on the front page) that several Missions to the country are equivalently vacant with the duty of appointed high commissioners having expired. This includes Kenya's High Commission to the United States of America. Among your first duties, having assumed duty as Kenya's president, duly elected or otherwise, will be to appoint commissioners to these missions. It is in this regard that I highly invoke you to consider me as a likely appointment to the

A to Z of Girl Pick-up Lines

Girl,  You are like a breath of fresh air , like an outstanding piece of Art in an art gallery  There are many things you and me can be, but it puts a smile of satisfaction on my face and a smile of envy on my buddies faces that you both beautiful and bootyfull  E ither your creator must have taken the greatest care creating you or your cheated your way around heaven, 'coz you clearly the prettiest girl on earth  D on't ask why my breathing quickens every time I see you; setting my eyes on you makes me feel like I am drowning in your beauty, I have to catch my breath   Exciting, Exotic, Elegant, Electrifying ; so many definitions in english , but when it comes to the human race, girl, you are the one and only definition of all the above  W hen I say you are fly , it may be due to the sensation of flying off the ground that I get when I am around you. Some girls are beautiful, a few are decent, even fewer got class; I didn't know I could find all this qualities in one gir

Nairobi's Top 4 Texas Brisket Places Reviewed and Ranked

Brisket on a bed of roast vegetables with barbecue sauce at Texas Brisket, Kikuyu  This review has been updated after a number of you suggested I try the brisket at County2County.  What's the best place to have Brisket in Nairobi? What's even brisket?  Brisket is one of the toughest cuts in a cow, from around the belly. It is so tough that it has to be smoked for about 16 hours to tenderise. But that there, is the catch.  12 to 16 hours later, it is the most flavourful and softest cut you will ever have. So full of flavour and so soft you can pick it apart with your fingers.  However, due to the long cooking time involved, only a few places offer brisket in Nairobi.  The best so far is Texas Brisket which is located within Kikuyu Railway station.  They do the meat for a proper 16 hours, and will usually have a fatty or non-fatty portion. The fatty portions are more tasty. A 500 gram serving goes for KSh. 900 and a 1 KG order comes with a serving of free fries. Their brisket has

Beers in Kenya: A sober opinion

Note: This is a dated post and has since been mostly passed by events. SAB Miller beers including Castle and Peroni are no longer widely available in Kenya after their exist. Sirville Brewery was bought out by Brew Bistro before being permanently shut in a tax dispute. Kenya is a land of milk, honey, beaches and taxes. I have penned, or is typed, a newer post here .  Peroni - One of the best beers in Kenya. Did a taste of canned and bottled Italian, and bottled Tanzanian I like the tangy flavour and body in Tanzanian Peroni. The can is close. Heineken drinkers will like the Italian one.  I have had a short beer swigging stint in my life. It has however been long enough for me to share my opinion of Kenyan beer. Interestingly, over the course of sharing such opinions with other drunkards connoisseurs,  I have found that we all have different views as to what beer is the best, which one makes you too drunk, or which one gives one free, extra hangover for every hangover you get

Best and Most Durable Highway SUV Tyres

Buying tyres is a dilemma - how do you get the best tyres without spending much more than is necessary?  If that's your dillema, well, you have come to the right place. We will look at tyres that are at the sweetspot of durability, performance and affordability especially for SUVs.  You'll find that most of my top picks are Asian brands. These tend to last longer and are more affordable. European brands are engineered more for comfort and ride quality. So if comfort is your top concern when buying tyres, I would recommend Pirelli and Michelin.  1. Otani   Otani is a little known tyre brand made in Dubai. It however rates quite highly for durability and hardiness, with most of its tyres coming in 'Extra Load' specification. Extra Load tyres are designed if you carry a lot of weight or if you do a lot of towing. Even if you don't, it means you end up with more hardy tyres than your manufacturer recommends. Propelling Otani to the top of my ranking is th