The recent report from the Communications Authority of Kenya has shed light on the alarming rate of cybercrime in the country. According to the findings, Kenya lost a staggering amount of Sh10.71 billion ($83 million) to cybercriminal activities in 2023, making it the second most affected country in Africa after Nigeria.
Businesses and agencies in Kenya reportedly spent an average of Sh561 million ($4.35 million) to recover and restore their services after being targeted by cyberattacks. The National KE-CIRT/CC detected a significant increase in cyber threat events, with 1.1 billion incidents recorded, marking a 16.50% rise from the previous period.
David Mugonyi, the Director General of the authority, highlighted the vulnerabilities in the country’s systems that cybercriminals exploit. These vulnerabilities include the use of insecure Internet of Things (IoT) devices, outdated software, and insecure system configurations. Mugonyi emphasized the importance of implementing localised solutions to address specific cyber threats unique to Kenya and the region.
In response to the escalating cyber threats, the Kenyan government plans to consolidate all cyber control units across ministries and agencies into a single national entity. This initiative will involve amending the National ICT Policy and updating the National Cybersecurity Strategy to combat evolving digital security challenges.
It is worth noting that Kenya launched its National Cybersecurity Strategy (2022-2027) in 2022 to enhance cybersecurity governance, strengthen legal frameworks, build capabilities, mitigate cyber risks and crimes, and foster cooperation at national and international levels. Mugonyi affirmed that the authority is collaborating with local and international partners to enhance the cybersecurity legislative framework and ensure prompt and effective resolution of cybercrime incidents.
Overall, the revelations from the report underscore the pressing need for robust cybersecurity measures in Kenya to safeguard businesses, agencies, and individuals from the detrimental impacts of cybercrime. By implementing strategic initiatives and fostering partnerships, the country can fortify its defenses against cyber threats and mitigate financial losses caused by malicious activities.
