The growing threat of cybercrime in Africa

Africa witnesses a surge in cyberattacks, becoming a top target for criminals leveraging ransomware, DoS attacks, and sophisticated tactics.

The META region, encompassing the Middle East, Turkey, and Africa, faces a relentless barrage of cyberattacks. But within this region, Africa has emerged as the prime target for malicious actors, raising concerns about the continent’s digital security and the potential ramifications for individuals, businesses, and governments.

Dr. Amin Hasbini, head of the Global Research & Analysis Team (GReAT) for the META region at Kaspersky, paints a stark picture. For instance, Kenya, South Africa, and Nigeria witnessed a staggering 41 million, 33 million, and 21 million cyberattacks in the past year alone. This alarming trend isn’t just about quantity; it’s also about the nature of the threats. Ransomware, notorious for encrypting files and demanding hefty ransoms for decryption, has reigned supreme for three consecutive years, with file encryption as its preferred weapon.

Advertisement

However, the threat landscape is undergoing a dynamic shift. While some countries grapple with intensified ransomware attacks, others face a surge in Denial-of-Service (DoS) threats, aiming to disrupt online services. This evolving tactic highlights the adaptability of cybercriminals, constantly seeking new avenues to exploit vulnerabilities.

The very nature of the criminal underground is transforming. Dr. Hasbini emphasizes the rapid growth and interconnectedness of these networks, allowing them to flourish and pose an even greater threat. These actors no longer discriminate; they target everyone – individuals, families, and even children. Their methodologies and technologies are constantly evolving, and they readily collaborate and compete, further exacerbating the problem.

Adding another layer of concern is the recent discovery of certain cybercriminals possessing “Zero-Day” exploits, granting them unprecedented access to systems with no known defenses. This highlights the sophistication and alarming capabilities these malicious actors are attaining.

The scale of attacks is also escalating, threatening to overwhelm defenses. The “Raysida” attack on a South African educational institution in January serves as a chilling example. This attack compromised a staggering 500 gigabytes of data, equivalent to 500,000 large Excel files, exposing a vast amount of personal and confidential information. Such incidents underscore the potential severity of cyberattacks in Africa.

Advanced persistent threats (APTs), characterized by stealthy and prolonged intrusion attempts, are also gaining traction. These targeted attacks primarily focus on government, telecommunications, financial, and industrial sectors, posing a significant challenge to regional stability and economic well-being. Dr. Hasbini emphasizes the particular vulnerability of government institutions due to the rapid digital transformation sweeping across Africa, a trend that, while bringing advancements, also creates exploitable gaps.