Indonesian hacker “Direxer” compromised 103 Kenyan government websites earlier this month. Attacks exploited a cross-site scripting vulnerability, security expert says. Kenya has no cybersecurity law, with cybercrime dealt with under the Kenya Communications Act of 2007. Lack of coordination among government agencies to ensure that the sites were online has led to questions about the effectiveness of the Computer Incident Response Team (CIRT) Kenya’s CIRT team has not done any site imaging or “even check if the kernel was compromised””]