As from the 1st of January 2024, it seems hackers have been targeting Zimbabwe’s websites considering the number of calls we have received so far. Majority of Zimbabwe’s websites without SSL (Secure Sockets Layer) or TLS (Transport Layer Security) encryption for websites have been the target for both local and international hackers.The motive factor behind some of the hacking is political differences that lead the hackers to target Zimbabwe’s country’s websites. Hackers may have various motivations, and political conflicts or differences can provide them with an incentive to carry out cyber attacks, similar to what we are encountering in Zimbabwe.
To limit or prevent website hacking, Zimbabwe’s organisations need to implement SSL/TLS on their domains and websites. SSL/TLS is a widely adopted security protocol used to encrypt the communication between a web server and a user’s browser, ensuring that data transmitted between them remains secure and private.
SSL/TLS encryption is not specific to any country and is implemented globally to protect sensitive information online. It is a fundamental security measure used by websites to establish secure connections and protect user data, including login credentials, financial information, and personal details.
It is important to note that SSL/TLS implementation is the responsibility of individual domain, website owners and operators. While many websites worldwide have adopted SSL/TLS to secure their connections, the reason why Zimbabwe’s organisations have not implemented SSL/TLS encryption include:
Lack of Awareness: Some website owners may not be aware of the importance of SSL/TLS encryption or the potential risks associated with transmitting data over unsecured connections.
Cost and Technical Barriers: Implementing SSL/TLS encryption requires obtaining and renewing SSL certificates, which might involve costs and technical expertise. Small businesses or individuals operating websites with limited resources may face challenges in acquiring and maintaining SSL certificates.
Legacy Systems: Older or outdated systems may not have built-in support for SSL/TLS encryption, making implementation more complex or requiring significant system upgrades.
Development or Maintenance Neglect: In some cases, website owners may have neglected to update their websites or failed to prioritize security measures, including SSL/TLS implementation.
It is now important for domain and website owners, including those in Zimbabwe, to recognize the importance of SSL/TLS encryption and immediately take steps to implement it to protect their domain, email, website and users’ data. Additionally, web users themselves should be cautious when accessing websites that do not have SSL/TLS encryption, particularly when sharing sensitive information.
If you believe your website has been hacked please call/whatsapp +263772278161 or email email@example.com
Engineer Jacob Kudzayi Mutisi