Yusuph Kileo was recently honoured with the cyber-security expert of the year award in Nairobi Kenya. He is a cyber security and digital forensics expert on the National Cyber-security Forum (Tanzania) and a board member of the Africa ICT Alliance (AfICTA).
Kileo while briefing journalists indicates how exiting the digital age is in human history due to the rapid advance of technology and the rise of the Internet of things. He also spotted the sad fact that the rise of cyber threat increases at the same rate.
He said "We have reached a point where the question is no longer if you can be attacked but when will you be attacked”. We have witnessed massive attacks on big organisations with good protection mechanisms. Some have been attacked by kids whom no one ever expected". Kileo further intimated journalists on how these attacks often occur very rapidly and the time to discover those attacks remains very long – discovery of some attacks has taken months and even years. Discovering attacks is a big challenge but not having the right skillset to do a proper incident management and digital forensics within organizations leads to another bigger challenge. Therefore, apprehending those behind the attacks becomes invisible.
Enumerating the most common cybercrime committed as: company policy violations; embezzlement; e-mail harassment; murder; leaks of proprietary information; and even terrorism, Kileo maintained that Law enforcement, network administrators, attorneys and private investigators must rely on the skills of professional computer forensics experts to investigate criminal and civil cases
Kileo who expressed his displeasure on how digital evidences are being handled said “We tend to forget that if the collection of digital evidence goes wrong, everything else will follow suit and the end result will be inaccurate" also admonished cyber-security experts to ensure standard is observed while digital forensics investigations are being carried out. Professional conduct should be maintained and the result should be the same no matter how many times the investigation is repeated. This can only be achieved by documenting everything from the initial point and maintaining a proper chain of custody.
"The main aim of digital forensics investigation is to bring the actual person behind the cyber-attack to book. With this in mind an expert witness remains a very important fact to consider. The one who can make the court understand and help it to provide a proper judgment."
Yusuph Kileo will speak at the ITWeb Security Summit 2017 on incident management, cyber forensics and investigations – perspectives from African continents.