Kenyan network operator Safaricom has denied its servers have been hacked and said the vulnerabilities experienced on several accounts are on the affected sites and not their servers.
This comes after several sites being hosted on Safaricom’s servers were compromised by a hacker team named ReZK2LL this month.
Nzioka Waita, director of corporate affairs at Safaricom, said that the company’s servers and security settings cannot be attacked due to their impermeable nature.
“We have detected and informed some of our customers that their websites hosted on Safaricom’s infrastructure have been compromised as a result of weak security controls on their individual websites,” Nzioka told CIO East Africa.
“It is the website owners responsibility to develop, manage and secure the content on their websites as Safaricom’s role is merely one of hosting,” he added.
Nzioka said that with Safaricom hosting thousands of websites on its shared servers, the company has adopted leading practices when providing hosting infrastructure to their customers reiterating that that their platform remains robust and secure.
Nzioka recommended website owners use the latest secure versions of software on their sites, regularly back-up their websites and also perform regular security tests on their websites, in order to avoid a repeat of hacking.
One of the affected individuals,who did not want to be named, said he had since changed the hosting service and is now working on a better site.