Skip to main content

A bad case of writer's block

Of course the Image is copied from
http://calvinandhobbes.wikia.com/wiki/Writer%27s_Block

On Wednesday morning, like any other Wednesday, I emptied my waste basket into a polythene "paper" bag, and left it outside for collection, before boarding a matatu to work.

However, unlike other Wednesdays, I received a text message from a friend, telling me that he had "seen my story in the Nation". I ignored it, thinking that probably he had seeing a similar story , with facts similar and assumed that someone had copied my story.

Getting into the office, I was checking on recent stories I have written and how other media houses  reported them, when I stumbled onto an article titled "Tech gurus caught napping as 103 websites hacked" .

While the story of the hacking was exposed on the Security Forum, I was arguably the first journalist to cover it, with a little bit more facts that I added from some research and my experience.


I was therefore surprised to find lots of similarities between what I had written and what the journalist had written, (Note that the original article has been changed after I raised the issue) notably:

  • Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed. The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking. 
I was surprised that in addition to myself, here was another journalist who had made a general assumption that the hacking exploited bugs. Many websites nowadays are hacked from a technique known as server side scripting.

In addition, this was suspiciously similar to sentences I had written in my article.
The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking
Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed.
  •  In a message in the forum, the hacker says:
    show off by me...
    thanks for tutorial in www.code-security.com all...
    i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
What I wrote. I have preserved the formatting, including the use of italics.
In a message in the forum, the hacker says

show off by me...
thanks for tutorial in www.code-security.com all...
i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
  • The government has reportedly moved fast to take the affected websites offline through a Cyber Incidence Response Team (CIRT) based at the Communications Commission of Kenya.
  • The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. In a comment, Vincent Ngundi who heads CIRT said: "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
What I wrote:
The government has moved fast to take the affected websites offline through a Cyber Incidence Response Team(CIRT) based at the Communications Commission of Kenya. The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. Vincent Ngundi who heads CIRT has responded with the following comment "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
More
  • The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker.
  • The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system:  
What I wrote:
The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker. The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system.
I hope the journalist knows that the government websites are normally hosted at treasury because he did his Computer Science degree attachment at the Ministry of Co-operative Development and Marketing, and had to work with a website hosted at the treasury.

I hope the journalist knows that Direxer's site is actually a blog.

I hope the journalist  knows that the sites run Joomla because of a Firefox plugin known as Wappalyzer , which can show what popular technologies a site is using.

I hope the journalist knows Forum Code Security and code-security.net are the same.

I hope the journalist really made sure Direxer is Indonesian, cause in a hurry to post my article, I didn't.

I hope the journalist in addition to numbering the hacked sites to make sure they were 103 , he also confirmed that they had been hacked. I only checked a few.


I hope the journalist does know that he is listed as the author of this article too , and so am I.


I hope to grow my career under the journalist, who is also the president of the Kenya ICT Reporters Association (KIRA).

KIRA seeks to herald ICT journalism in Kenya and the region to the peak, by:
  • "keep pace and understand how the emerging technology tools like Twitter, Skype, Facebook, Youtube, google reader, RSS feeds, news alerts, blogs, websites, etc can be professionally utilised by journalists."
  • need to blog, tweet, skype and subscribe to feeds to remain on top of news.
A small correction, RSS can be traced back to 1995 and Google Reader is an RSS Feed Reader.

You can find out more about KIRA here, where the president also notes that "not many journalists are competent in this beat thus the skewed coverage of ICT matters" .


Below is the text of the original peice as it appeared on the Business Daily.

By JAMES RATEMO, jratemo@ke.nationmedia.com  (email the author)

Posted  Tuesday, January 17  2012 at  22:59

An Indonesian hacker has caught Kenya government tech gurus napping. In an unprecedented occurrence, an Indonesian hacker known as direxer has taken down 103 government of Kenya websites. 

According to a Tuesday discussion on Kenya's online tech forum, Kictanet, the hacker is part of an online Indonesian security forum known as Forum Code Security and says he took down the websites following tutorials from the forum.
The news of the hacking was first exposed on the site code-security.net/archives/114, a forum on code security.
The title on the website read: “Joint Discussion — Forum on Code Security”.
"Such tutorials usually exploit programming errors in code, known as bugs, which have not been fixed. The hacker appears to have a website at http://www.direxer.com/ though this has not been updated to reflect the hacking.
In a message in the forum, the hacker says:
show off by me...
thanks for tutorial in www.code-security.com all...
i have exploit from cs web, and i attacking to server Goverment Kenya,,,, and then,,, success full... this is deface in this night...
The government has reportedly moved fast to take the affected websites offline through a Cyber Incidence Response Team (CIRT) based at the Communications Commission of Kenya.

The CIRT was formed to handle such situations and ensures Kenya's security in cyber space. In a comment, Vincent Ngundi who heads CIRT said: "We're on it. Thanks for the heads-up and comments" in Kenya's Security Forum where the news first broke.
The government normally hosts several websites in one server at The Treasury thus compromising the server may expose several websites to a hacker.
The Administration Police website has been hacked several times in the recent past. At the same time, most of the websites hacked appear to have been running the Joomla Content Management system:
Also see details here












Comments

Popular posts from this blog

The bitter story of the downfall of Mumias Sugar company

Have you heard the bitter story of Mumias Sugar?

Regarded by many as Kenya's most successful sugar miller, Mumias Sugar Company was a disaster waiting to happen.

Many pointed out how Mumias Sugar Company was a fortress in the wreck that is Kenya's sugar industry, only unaware that it was just a matter of time. As the old wise men said, "Ukiona cha mwenzako cha nyolewa, tia chako maji".

The proverb means that if you see your neighbour's head getting shaved, your head will soon be undergoing the same - you'd therefore better wet your head for a smoother shave, otherwise you will be forced to undergo a painful, dry, shave.

But what ails Kenya's sugar industry?

The Kenya sugar industry is under legal siege. The typical Kenyan issue of coming up with laws to tackle a problem is evident here.

Many of Kenya's sugar factories are owned by the government, and have slowly declined under mismanagement and corruption. The appointing of political cronies and trib…

Tuskys Bread Versus Ukwala Sukuma Wiki

Ukwala is a relatively cheapaffordable supermarket. The exact same good sold in Nakumatt, Tuskys and Ukwala chain of stores will most of the time cost less in Ukwala. For example, I was recently looking at a Kenpoly Plastic rack that comes with 3,4,5 or 6 compartments that I saw in a friends house.

My friend, wait, colleagues says that the rack set him slightly more than kshs 2000 at Nakumatt. It is quite a good looking rack and adds up to the spruced up appearance of his house.Why he doesn't have a girlfriend beats me.n This is not to say I have one, neither do I deny.Also,my house is the equivalent of the Commonwealth Games in India,something a relative once described as a dustbin, and for this reason , "No Visitors" policy remains.

Back to the Kenpoly rack, the rack is available in most Nakumatt stores and at least one Ukwala store that I visited. As for Tuskys, I have never figured how they operate big stores that competing stores beat when it comes to variety. For t…

How I lost my phone to Nairobi's best con man

A good con requires the highest level of cooperation from the victim.

*** I lost my phone on Friday evening, some time between 6:40 p.m. and 7:10 p.m. I know the time because my receipt indicates I was served at Ukwala Supermaket, Tom Mboya at 6:32 p.m., on the 26th of February, 2016.

Given I'm a brisk walker who avoids crowds, it should not have taken me more than five minutes to get to the area around the Tom Mboya statue on Moi Avenue,  just opposite the Hilton.

My habit of avoiding crowds is what led to what became a tragic decision, to walk along the road and emerge at the bus stop next to Ambassadeur Hotel, rather than walk along the pavement. It is here that I bumped into the villain, Nairobi’s best con man. He was running, kicking a plastic bottle along the road.

He said something to me that I didn't catch, to which I responded with a “huh”? It was only the two of us and lots of buses, for everyone else was using the zebra crossing next to Pizza Inn, then walking past t…

The Bible. Why you should read your Bible.

After reading what The Candid Tin man had to say about the Bible on his blog, I felt a disappointed man. In my opinion, the candid Tin man had committed the same errors of omission and commission that have plagued the Bible for centuries.

In the beginning, the Roman Catholic church was the dominant church worldwide, and the bible existed in Latin language which common folk like me and you did not understand. Latin was a dead language used by the priests of the roman Catholic church and perhaps a few scholars.

The Roman Catholic church aimed at controlling the public's opinion , as the church still does today, and especially their opinion of what was God's word. Therefore, back then, if you needed to understand God's word, you had to consult the Roman Catholic Priests to read the Bible for youa nd then tell you what it said. How well they did this and their intentions remained questionable, with accusations directed at the Roman Catholic Church for mistranslating The Bible…

Kenyan products: The art of punishing your consumer

Peanut butter used to taste so good, but you could not afford it on the pocket money that you got back in school. A few years later, you have your first real job and your first "disposable" income. You buy your first real tub of peanut butter , probably the first in your life. You feel proud that Dominion peanut butter is manufactured in Ruiru, a town that you visited in your campus days to withdraw your pocket money , it was the nearest bank ATM to your campus. This was before Equity bank became a mainstream bank and decided to open an ATM in your campus, and before M-Pesa meant that you could withdraw your pocket money next to the kibanda  where you had your one meal of the day.

The peanut butter though is a far cry form the peanut butter you remember. It does not taste that good, and turns into some sort of stone barely before you are a third way through the jar. The stone is not a kind that you learned about in your Geography classes though.

Dejectedly, you decide not …