Nairobi Metropolitan Services platform became the victim of a cyber attack from unknown quarters.

The attack led the NMS to suspend the use of their online development plans approval system since it was at the centre of the attack.

NMS Deputy Director-General Kang’ethe Thuku announced the suspension of their online development plans approval system until the issue is resolved.

NMS uses the quick response (QR) code generator as part of their e-construction permit platform in the process of application of building plans and permits.

“We discovered that the e-construction system was recently hacked. We have stopped using that system for the time being as we look for a solution,” said NMS Deputy Director.

The hackers seem to have authorized the construction of buildings in zoned off areas such as Muthaiga North.

It took the intervention of the Kenya Alliance of Residents Association who raises concerns after noticing the construction of buildings coming up in zoned off areas.

NMS introduced the QR code system on March 20, 2020, to facilitate quick service delivery and stop corruption that had caused a backlog of approvals.

Kenya has no overarching law that focuses on such incidents of cybersecurity however, the Kenya Information and Communication Act of 1998 (KICA) includes cybersecurity-related provisions that prohibit various actions that would threaten cybersecurity and prescribes criminal penalties for the same ranging between a fine of KES 200,000 to KES 1,000,000 and/or a jail term of up to 5 years.