Most vulnerabilities that happen and/or reported are either due to lack of security awareness by end users (i.e., students, faculty, staff) or systems administrators’ failure to update the software an institution is running? for example:-
Kenya has finally approved registration of what are called Second Level Domains. This means it will now be possible to register and use domain names like helb.ke rather than helb.co.ke (or in addition to). KENET shall also be adopting the domain kenet.ke rather than the longer kenet.or.ke or kenet.ac.ke.
In April 2017, KENET conducted a survey of ICT directors of member universities / university colleges and among the questions we asked are the following:
Does your institution have an ICT disaster management policy? Only 30 out of the 51 who responded said yes.
Does your institution have off-site backup? Only 25 out of the 47 who answered the question stated that they had an off-site backup.