Surge in Cybercrime and Data Breaches in Kenya Amid Digital Transformation

Severity: High (Score: 66.6)

Sources: www.dailymaverick.co.za, Eastleighvoice.Co.Ke, techcabal.com, Ictworks, nethope.org

Summary

In 2025, Kenya saw a dramatic increase in cyber threats, with cybersecurity advisories rising to 72.3 million, up from 39.0 million in 2024. Reported cybercrime incidents surged to 12.5 billion, highlighting a critical vulnerability in digital systems. A significant breach occurred in October 2025 when a threat actor stole over 2.15 terabytes of data from M-Tiba, affecting approximately 4.8 million users. This data included sensitive information such as national ID numbers and medical diagnoses. The rise in cyber incidents is attributed to increased internet usage and digital adoption, which expanded the attack surface for cybercriminals. System vulnerabilities were the most exploited, with over 12.1 billion cases reported. Web application attacks increased sharply to 39.8 million cases, while botnet and DDoS attacks rose to 79.9 million. The situation reflects a growing pressure on Kenya's cybersecurity infrastructure, necessitating urgent action to address these vulnerabilities. Key Points: • Cybersecurity advisories in Kenya surged to 72.3 million in 2025, marking an 85% increase from 2024. • A major data breach in October 2025 compromised 2.15 terabytes of sensitive data from M-Tiba. • System vulnerabilities accounted for over 12.1 billion cyber incidents, indicating critical weaknesses.

Key Entities

• Botnet (attack_type)
• Brute Force (attack_type)
• Data Breach (attack_type)
• DDoS (attack_type)
• Malware (attack_type)
• M-Tiba (company)
• National Health Laboratory Service (company)
• China (country)
• Kenya (country)
• Somalia (country)
• South Africa (country)
• T1566.002 - Spearphishing Link (mitre_attack)
• T1566 - Phishing (mitre_attack)
• CommCare (platform)
• Dhis2 (platform)
• OpenMRS (platform)
• TrakCare (platform)
• BlackSuit (ransomware_group)