Connect with us

GRBusiness

Preventing your network from becoming a Botnet

Published

on

Not having sufficient network protection may allow your organization’s devices to be part of the next cyber-attack explains Harish Chib, vice president, Middle East & Africa, Sopho

Botnets are large volumes of distributed networked computers and devices that have been taken over by a cybercriminal. Botnets, also referred to as bots, are usually taken over by malicious software to enable remote control by a threat actor.

They are set up and developed by a hacker to provide a powerful and dark, cloud computing network to conduct cyberattacks of a criminal nature.

The growth in mobile and network devices has created large scale social and productivity benefits for us. We can now remotely access computers, security systems, cameras, appliances, and a growing list of devices, interconnected with cloud. Collectively this is referred to as the Internet of Things or IoT.

A worrying aspect of the growth of Internet-connected devices is the absence of basic security precautions. Most end users rarely change factory defaults, which can be exploited by hackers to take control of the devices.

Another door for cybercriminals to take control of connected devices is called the back-door entry. This is a manufacturer’s access to the device through an undisclosed connection, used for remote testing and updates.

This large distributed, network of computers, under the control of threat actors, represents an aggregation of computing power that can be used for a devastating effect.

Inside the network

Malicious software designed to exploit IoT devices are usually not sophisticated. They operate by scanning network ports, looking for access opportunities, and gaining access through default credentials, or brute-force hacking to gain access.

This software is much easier to defend against, as it merely requires configuring the network firewall protection devices.

Similar to other malware, botnets can enter an organization through multiple points of entry. This includes email attachments, hacked web sites, connected sensors and other IoT devices, and USB sticks.

Once a malicious software has entered an organization, it will call home – the hackers command and control server – to register its success in gaining entry and to request further instructions.

It may be told to lie low and wait, or be instructed to move laterally on the network to infect other devices, or to participate in an attack. This attempt by the malicious software to call-home represents an opportunity to detect infected systems on the network that are becoming part of a botnet.

Once an attack has got underway, the attack itself can be difficult to detect. From a network traffic point of view, the device will simply be sending emails out as spam, transferring data or mining bitcoins, or performing DNS lookups and a variety of other requests, usually seen in large scale attacks. In isolation, none of these types of activities are noteworthy.

Building protection

The most important ingredient for effective protection from botnets is the organization’s network firewall. The following can help to get best protection from the firewall.

  • Advanced Threat Protection can identify botnets already operating on the network. Ensure the firewall has malicious traffic detection, botnet detection, and command and control, call-home traffic detection.
  • Intrusion prevention can detect hackers attempting to penetrate and take over the network. Ensure the firewall has next-gen intrusion prevention system that is capable of identifying attack patterns inside the network.
  • Sandboxing can pick up the latest malicious software before it reaches the organization’s computers. Ensure the organization firewall offers advanced sandboxing that can identify suspicious web or email files and activate them in a safe environment.
  • Effective web and email protection can prevent malware from getting onto the network. Ensure the firewall has behavioral-based web protection that can simulate JavaScript code in web content to determine behavior before it reaches the browser.
  • Ensure the firewall has top-shelf anti-spam and antivirus technology to detect malware in email attachments.
  • Web Application Firewall can protect servers, devices, and business applications from being hacked. Ensure the firewall offers WAF protection for any system that requires remote access. 

Best-practices

  • Change the password for all your network devices to a unique complex password, and use a password manager if necessary.
  • Minimize use of IoT devices and update all essential connected devices. Also disconnect unnecessary devices from the network and upgrade older devices to newer models.
  • Avoid using IoT devices that require ports to opened in the network firewall or router to provide remote access. Instead, use cloud-based devices that connect only to the cloud provider’s servers and do not offer direct remote access.
  • Do not enable UPnP on your firewall or router. This protocol enables devices to open ports on the firewall on demand without your knowledge increasing the surface area of attack.
  • Use secure VPN technologies to manage your connected devices remotely.

Botnets have a massive slowdown effect on the global Internet traffic. They can also have a devastating impact on an organization, if the objective of the attack is to steal sensitive information.

Even if the botnet operating on the organization’s network is not after its data, it could be using devices and network resources to cause devastating harm to another organization.

Do not let your network become part of the next global botnet attack.

GrassRoots.ng is on a critical mission; to objectively and honestly represent the voice of ‘grassrooters’ in International, Federal, State and Local Government fora; heralding the achievements of political and other leaders and investors alike, without discrimination. This daily, digital news publication platform serves as the leading source of up-to-date information on how people and events reflect on the global community. The pragmatic articles reflect on the life of the community people, covering news/current affairs, business, technology, culture and fashion, entertainment, sports, State, National and International issues that directly impact the locals.

Continue Reading

Transport

Gov Mbah Flags-off dualization of 43.7 Penoks-Abakpa Nike-Opi-Nsukka Road

By Gold Obikeze

Published

on

Penoks - Abakpa by COMAG by Peter Mbah-

… Mbah is godsent to Nsukka zone- Igwe Asadu

… You’ve proven yourself more Nsukka than any Nsukka man- Ezenta Ezeani

… Enugu has suddenly become a reference point for transformational projects – Dennis Agbo

… We’ll deliver on schedule and quality – Contractor

Governor of Enugu State, Dr. Peter Mbah, has flagged-off the construction and dualisation of the 43.7km Penoks-Abakpa Nike-Ugwogo-Nike-Opi Nsukka Road with streetlights and 18-month completion timeframe in line with his administration’s vision to make the state the premier destination for investment, business, tourism, and living.

Speaking during the flag-off ceremony at Opi attended by political heavy weights and leaders of Nsukka Zone, Mbah stressed that the the project, which includes straightening the of many bends, would drastically reduce accidents and criminality on the road.

“In the build-up to the election and in my acceptance speech after my election, we made a pledge that we are going to dualise the Penoks-Abakpa-Ugwogo-Opi-Nsukka Road because . we realised from the outset that if we had to grow this economy to an exponential height, no section of this state should be left behind, more so an economic hub like Nsukka Zone. So, all we are doing here today is connecting those dots,” he said.

Penoks - Abakpa by COMAG by Peter Mbah-
Governor at the flag-off ceremony

Mbah regretted that a trip from Enugu to Nsukka presently takes over an hour, hence the decision to do the 3.6km from the Penoks Junction all the way to the T-Junction flyover in addition to the 41km Abakpa Nike-Opi Nsukka Road to reduce travel time to about 30 minutes and make it possible for the people to comfortably live and work in Enugu and vice versa.

He also noted that his administration’s grassroot-based development and economic model placed the Enugu North Zone at an advantage.

“We are doing projects based on electoral wards. Guess who are the greatest beneficiaries of this model? It is the Nsukka zone. You have 102 electoral wards. That means you will end up with 102 smart schools, 102 Type 2 Primary Healthcare Centres, over 1,000km of roads based since we are additionally going to do at least 10km of roads per ward,” he remarked.

In his remark, the traditional ruler of Edem-Ani and Chairman, Enugu State Traditional Rulers Council, Igwe Samuel Asadu, said, “The people of Nsukka cultural zone and Enugu North Senatorial District never imagined the possibility of this life-time project. The only way we can pay you back is that you do not need to come to campaign here for your second tenure because we are all going to do that for you. You are Godsent to the people of Nsukka, Enugu State and Nigeria at large.”

Also speaking, the Deputy Speaker of the Enugu State House of Assembly, Hon. Ezeani Ezenta, noted that the governor had shut the mouths of naysayers.

“I feel emotional because a lot of things were said during the election. But today, by your good work, you have proved yourself even more Nsukka than any other Nsukka man,” he emphasised.

On his part, former Deputy Governor of Enugu State, Chief Okechukwu Itanyi, described the project as “gigantic, huge, unbelievable and marvelous,” noting that it would open Nsukka Zone and the state to the world.

“This is a legacy project. Your name will never die. Your spirit shall never die. We will continue to give you support,” he added.

Other speakers, including the Chairman of Nsukka Nsukka LGA, Hon. Jude Asogwa, former Secretaries to the State Government, Dr. Dan Shere and Prof. Simon Ortuanya, among others extolled the initiative.

Significantly, in a press statement he personally issued on Monday, Member representing Igboeze North/Udenu Federal Constituency on the platform of the Labour Party, Hon. Dennis Agbo, described the road as “a transformational project, which will greatly facilitate commerce, ease mass transit and evacuation of farm produce by our hard working farmers as well as fight crime and criminality.“

“Our governor has clearly demonstrated his uncanny ability to see and unleash the enormous potential of our dear state and people. It is heartwarming to note that Enugu has suddenly become a frontline state and a reference point for transformational project initiatives,” he stated.

The Member representing Nkanu East/Nkanu West Federal Constituency and Leader of the Enugu State Caucus of the National Assembly, Hon
Nnoli Nnaji, expressed the total delight of the federal lawmakers at the governor’s development initiatives and pledged their total support for him to move the state forward.

Meanwhile the CEO of COMAG Construction Company, Cosmas Agu pledged to deliver a high quality project and on schedule.

Continue Reading

Finance

Flutterwave Activates American Express Payments for its Merchants in Nigeria

Published

on

Olugbenga GB Agboola, CEO Flutterwave
Olugbenga GB Agboola, CEO Flutterwave

Flutterwave, Africa’s leading payments technology company, has announced today that its online merchants in Nigeria can now accept American Express payments.

American Express Card Members – with consumer, business, or corporate cards – will be able to make payments directly to e-commerce businesses using Flutterwave in Nigeria.

This service will also be available to Flutterwave merchants in other countries including Tanzania, Rwanda, Ghana and Uganda in the near future.

This collaboration facilitates online transactions and offers a range of benefits for both merchants and online shoppers:

  • Flutterwave merchants can attract business from a new customer base of American Express Card Members in Africa and around the world. This includes consumers with personal cards and spenders with business or corporate products. Terms and conditions apply.
  • For shoppers, there is more choice when it comes to being able to select their preferred method of payment when transacting with Flutterwave merchants. This collaboration strengthens the American Express global network and increases the number of locations across Africa that can be used by American Express Card Members to purchase a range of different goods and services.

Speaking on the development, Olugbenga ‘GB’ Agboola, Founder and CEO, Flutterwave, said:“At Flutterwave, we’re always looking for ways to connect the world to Africa through payments. This is one of our initiatives to ensure that more people across the world can pay using Flutterwave in Africa. We understand the value of providing shoppers with payment methods that work for them, as well as helping businesses to expand their customer bases. This collaboration also provides more options of where to shop and what to buy to American Express card holders across the globe. By offering American Express as a method of payment, Flutterwave will make the payment process faster and simpler for American Express card holders, and improve the experience for e-commerce businesses using Flutterwave, helping them to start locally and sell globally.”

On his part, Briana Wilsey, Vice President and General Manager of Global Network Services EMEA at American Express, said: “American Express continues to expand in Africa to enable greater payment choice for businesses and consumers. Through the agreement with Flutterwave, a trusted payment provider, we are giving e-commerce merchants in Nigeria the opportunity to reach American Express Card Members around the world. The collaboration is a win-win because it also increases the number of places where our Card Members can use their Cards in Nigeria.”

Flutterwave and American Express share similar visions; to enable businesses across the world to expand their operations in Africa and other emerging markets through a platform that enables local and cross-border transactions via one Application Programming Interface (API).

Flutterwave has processed over 630M transactions in excess of USD $31B, serves global and African customers like Uber, Air Peace, Bamboo, PiggyVest, and across various industries. On the other hand, American Express is a globally integrated payments company, providing customers with access to products, insights and experiences that enrich lives and build business success.

Continue Reading

Finance

NNPC Releases 2023 Audited Financial Statement

Published

on

NNPC Report
L-R: Permanent Secretary, Ministry of Petroleum Resources, Ambassador Nicholas Agbo Ella; Chairman, NNPC Ltd Board, Chief Pius Akinyelure and the CFO NNPC Ltd, Mr. Umar Ajiya during the Release of NNPC Ltd’s 2023 Audited Financial Statement (AFS) at the NNPC Towers in Abuja, on Monday.

…Posts N3.3trn Net Profit, Declares N2.1trn Dividend

…Targets 2mbpd Crude Oil Production by December 2024

The NNPC Limited has released its 2023 Audited Financial Statement (AFS), declaring a net profit of N3.297 trillion at the close of the financial year which ended in December 2023, an increase of over N700billion (28%) when compared to the 2022 profit of N2.548trillion.

In a world press conference held at the NNPC Towers in Abuja on Monday, the Chief Financial Officer of the Company, Mr. Umar Ajiya said the release of the AFS is a testament to the Company’s commitment to transparency and accountability.

“Our fiscal performance reflects both strategic foresight and operational resilience. Despite inherent challenges of our operational and economic environment, we have improved the productivity and the financial performance of this great company,” Ajiya stated.

Ajiya added that posting such impressive returns demonstrates NNPC Ltd’s commitment to sustaining profitability and supporting the attainment of national energy security as stipulated by the Petroleum Industry Act (PIA) 2021, and by extension, as expected by the Company’s shareholders.

Explaining that the NNPC Ltd will announce Initial Public offer (IPO) once the shareholders and Board make a decision, Ajiya also debunked claims on subsidy payment, saying the Company was only taking care of the shortfall on PMS importation between it and the Federation.

Speaking earlier at the press conference, the Chairman of the NNPC Ltd Board, Chief Pius Akinyelure said that the excellent performance came as the fruit of the PIA 2021, the commitment of the Board, Management and staff of the company.

Akinyelure added that the shareholders of the company have since approved a final dividend of N2.1trn in line with PIA 2021 provisions.

In her remarks at the briefing, the Executive Vice President, Upstream, Mrs. Oritsemeyiwa Eyesan said with improvements witnessed as a result of the renewed vigour in the war against crude oil theft and pipeline vandalism, NNPC Ltd is targeting 2million barrels per day crude oil production by the the end of the year.

On the current fuel queues in parts of Lagos and the FCT, the Executive Vice President, Downstream, Mr. Dapo Segun appealed for understanding from Nigerians, saying that the the Company is working with relevant stakeholders to address the distribution, evacuation and logistics challenges.

It would be recalled that in 2021, NNPC declared profit in its operations for the first time.  From a loss position of N803 billion in 2018, it reduced the loss further down to N1.7 billion in 2019.

However, in 2020, it posted its ‘first ever’ profit of N287 billion, then in 2021, it recorded a N674.1 billion profit and in 2022, the profit grew to N2.548, an unprecedented achievement in its financial performance. The N3.297 trillion profit declared for 2023 is the highest since the Company’s inception, 46 years ago.

Continue Reading

Trending