Kenya's rapid digital transformation has become a double-edged sword, exposing the country to a growing wave of cyber threats.

A recent report presented to Parliament paints a concerning picture of an increasingly volatile cybersecurity landscape, with over 100 attempts to breach critical government infrastructure in just eight months this year.

Between January and August 2024, 114 cyber-attacks targeted key government agencies, underscoring the vulnerability of public institutions as they embrace online services.

President William Ruto, in his address on the findings of the Annual Report on the State of National Security, highlighted the challenges posed by these threats, particularly as advancements in Artificial Intelligence (AI) complicate the cybersecurity environment.

"The rapid advancement of Artificial Intelligence (AI) technologies has introduced both opportunities and challenges in the cybersecurity landscape," Ruto stated.

Read More

  1. Kenya’s debt soars to Sh10.8 trillion as pressure on finances mounts
  2. Cabinet approves BRT core line 3 to transform Nairobi's busy transit
  3. Cabinet approves formation of task force to address femicide crisis in Kenya

As Kenya continues to digitise, it faces an array of cyber risks, including malware, social engineering, online fraud, and cyberbullying.

These threats have already led to service disruptions, espionage, and significant financial losses.

The report also draws attention to a significant gap in the public's understanding of cybersecurity, which exposes individuals and businesses to a growing number of online dangers.

In response, the government has introduced several measures to bolster cyber resilience, including the Computer Misuse and Cybercrime Management Regulations (2024), aimed at improving coordination and incident response.

A multi-agency approach, spearheaded by the National Kenya Computer Incident Response Team (KE-CIRT), has also been established to monitor and counter the rising threats.

Despite these efforts, AI-driven cyber-attacks are becoming increasingly sophisticated.

The Communications Authority (CA) has raised alarms about cybercriminals using AI to enhance their operations, making traditional methods of detection more difficult.

"Cybercriminals are increasingly using AI-enabled attacks to enhance the efficiency and magnitude of their operations," said CA Director-General David Mugonyi.

While the number of detected threats has decreased, the risk remains high.

In the three months leading to September 2024, KE-CIRT/CC detected 657.8 million cyber threats, down from 1.1 billion in the previous quarter.

Experts emphasise the importance of continuous investment and vigilance to stay ahead of evolving cyber threats.

The government expressed its commitment to securing Kenya’s digital future, investing in modern cybersecurity tools, law enforcement capabilities, and international collaborations to tackle the ever-growing challenge of cybercrime.