Naivas on Sunday confirmed being a victim of a ransomware attack by an online criminal organization.
Naivas Chief Executive Officer (CEO) Willy Kimani, in a statement, indicated that the company is seized of the matter and that their systems are back on track, secure and operational.
“On becoming aware of the attack, Naivas took immediate steps to prevent external access and engaged leading cybersecurity experts crowd strike to ensure system integrity. This process is complete and our systems are secure,” read part of the statement.
Further, the CEO noted that the company is cooperating with relevant law enforcement agencies and the Office of the Data Protection Commissioner to investigate and bring the perpetrators to book.
Additionally, the CEO said that the company remained lip-tight on the attack's magnitude and nature, indicating that it does not hold any credit or debit card information on its systems.
Did you read this?
Moreover, it added that it is unaware of any malicious use of data that the hackers had stolen, urging its customers to be vigilant to phishing attempts by phone or SMS.
“It is recommended in the face of this type of situation to pay particular attention to any phishing attempts by phone, SMS or email as well as to the sufficient security passwords “, added the statement.
Under the data protection act, the Kenyan constitution prohibits illegal penetration of data and use of it.