KCB denies data breach allegations

The Kenya Commercial Bank has moved to allay fears of data breach in one of their banking systems.

In a statement posted on the bank’s Facebook Page on Friday 21st October, the lender dismissed the claims acknowledging that they were aware of the data breach allegations but an investigation revealed malicious misinformation as the cause of the concern from customers.

There were allegations of data infringement made in an online news report based on claims by a Burundian hacker named Chris Irakoze.

Mr Irakoze, said that KCB may have suffered a massive data breach as a file with the details of more than 500,000 customers detailing their names and phone numbers had appeared online. The alleged data breach had first been reported Irakoze through a tweet in September.

“The alleged customer data breach has been found to be false,” read the statement.

The statement further stated, “We wish to assure all our customers that our platforms and data are highly secured. KCB Group systems including the mobile App have been extensively tested and validated by our internal and the best external data security experts. Multiple layers of encryption, private keys and unique authentication are among the key embedded data security features that safeguard our mobile app. There is no breach to our systems.”

In its defense KCB, said that its mobile app is guarded by data security features such as several layers of encryption, private keys and unique authentication.

“The bank is working with the relevant authorities to take the necessary legal action against the parties who originated this misinformation. Our commitment as a trusted partner is to continually offer secure and best in class banking experience using new technology,” concluded the KCB statement.

Cyber crime