By 
Kenya’s cybersecurity landscape is facing unprecedented pressure, with cyber threat incidents surging sharply in the final quarter of 2025 and exposing critical gaps in the country’s defensive infrastructure.
According to a report by the Communications Authority of Kenya (CA), the country recorded 4.6 billion cyber threat events between October and December 2025—up from 842 million in the previous quarter. This represents a 441% increase, marking the most significant quarterly escalation in at least three years.
Threat volumes surge across all vectors
The spike cuts across multiple threat categories, highlighting the scale and complexity of the challenge. System vulnerabilities accounted for the largest share, rising by over 463% to 4.37 billion incidents. Mobile application attacks also increased significantly, climbing more than 300% within the same period.
Distributed Denial-of-Service (DDoS) attacks—where systems are overwhelmed with traffic until they fail—recorded the fastest growth, surging by over 1,100% quarter-on-quarter.
Despite this escalation, response efforts appear uneven. Of the 21.8 million advisories issued during the period, only 1.34 million were related to DDoS threats, pointing to a growing mismatch between threat intensity and mitigation focus.
AI-driven threats and systemic weaknesses
Authorities attribute the surge partly to the increasing use of artificial intelligence by cybercriminals, enabling more sophisticated and scalable attacks. The report also highlights persistent vulnerabilities, including inadequate system patching and low levels of user awareness around social engineering tactics.
The rise in incidents follows a clear upward trajectory. The National Kenya Computer Incident Response Coordination Centre had already flagged 657.8 million threat events in the third quarter of 2024, with volumes continuing to climb through 2025.
By the first quarter of 2025, threats had reached 2.54 billion—before nearly doubling again to 4.6 billion by year-end.
Economic implications deepen
The surge in cyber threats carries significant economic implications. Kenya lost an estimated $83 million to cybercrime in 2023, making it one of the most affected countries in Africa.
With the country’s fintech sector projected to process up to $1.5 trillion in payments by 2030, cybersecurity is increasingly becoming a financial stability issue rather than just a technical concern.
Platforms such as M-PESA—which handles over 100 million transactions daily—operate on infrastructure directly exposed to these threats, amplifying systemic risk.
Closing the defence gap
To address the growing threat landscape, the CA has recommended stronger cybersecurity measures, including the adoption of multi-factor authentication, robust password policies, improved firewall and antivirus configurations, and more consistent system patching.
The regulator also emphasised the need to enhance the scope and responsiveness of advisories, ensuring that mitigation efforts keep pace with the scale and sophistication of attacks.
As Kenya’s digital economy continues to expand, the widening gap between threat levels and defensive capacity underscores the urgency for more coordinated, data-driven, and proactive cybersecurity strategies.
Comments