Tanzania Computer Emergency Response Team (TZ-CERT is mandated to raise awareness and enhance technical capacity in the area of cybersecurity.

Between 27^th July to 18^th September 2020, TZ-CERT carried out cybersecurity awareness program in nine (9) public institutions namely: Tanzania Investment Centre (TIC), Tanzania Airport Authority (TAA), National Housing Corporation (NHC), Land and Transport Regulatory Authority (LATRA), Tanzania National Park Authority (TANAPA), Tanzania Commission of Universities (TCU), National Social Security Fund (NSSF), Public Service Social Security Fund (PSSSF) and National Audit Office of Tanzania (NAOT) geared to sensitize safe and acceptable employees’ behaviour on the use of emails.

The program was tailored to address the human aspect of cybersecurity to equip employees with essential knowledge on how to identify and protect themselves from email threats; A total of 1,135 employees benefited from the program.

Much of awareness efforts were exerted on phishing, a form of social engineering where criminals send an email that mimics reputable entities such as banks to deceive the recipients into taking action such as providing their personal information or clicking a malicious link, or opening an attachment with a virus.

Pictures below: Participants from the National Social Security Fund (NSSF) following up cybersecurity awareness session presented on 22nd August 2020.

Pictures below: Participants from the Public Service Social Security Fund (PSSSF) following up cybersecurity awareness session presented on 18th September 2020.

Cisco has released security updates to address vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP). Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review released Cisco Security advisory and apply necessary updates.

Firefox has released security updates to address multiple vulnerabilities in Thunderbird 68. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review Thunderbird Security Advisory and apply necessary updates.

Google has released security updates to address vulnerabilities in Chrome prior to version 85.0.4183.83. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review Chrome Release Page and apply necessary updates.

Debian has released security update to address a vulnerability in Lua module for Nginx. Exploitation of this vulnerability may allow an attacker to gain escalated privilege.

Users and administrators are encouraged to review Debian Security Advisory and apply necessary updates.