Kenya, SA lead as Africa recorded 131.6 million web threats in 2024

As Africa’s digital landscape rapidly evolves, so too does its exposure to cyberthreats. According to anonymised data from the Kaspersky Security Network (KSN), African businesses and individuals faced a barrage of web-based threats, on-device attacks, and sophisticated data-theft schemes in 2024.

The data revealed a staggering 131.6 million web threats detected across Africa, underscoring the growing threats of online risks. These threats, which include malicious websites, phishing scams, and other internet-based attacks, disproportionately target businesses.

Kenya saw nearly 20 million attack attempts, followed by South Africa with 17 million and Morocco with 12.6 million. Compared to 2023, web threat detections in African organisations rose by 1.2%, reflecting the increasing sophistication and frequency of cyberattacks targeting corporate networks.

The proliferation of hybrid work models and rapid digitisation, often outpacing cybersecurity investments, has left many businesses vulnerable to advanced persistent threats (APTs).

On-device threats, such as malware spread via USB drives, CDs, DVDs, or disguised within complex installers, also surged.

Kaspersky reported a 4% increase in local threat detections in African organisations in 2024 compared to the previous year. Some countries experienced dramatic spikes: Nigeria saw a 169% rise, Ethiopia 86%, South Africa 32%, Senegal 11%, and Morocco 9%.

These figures highlight the persistent challenge of securing devices in environments where removable media remains common, particularly in less digitised regions.

Data theft emerged as a particularly alarming trend, with spyware and password theft gaining traction. Kaspersky recorded a 14% increase in spyware detections among African businesses from 2023 to 2024.

Spyware, which covertly monitors user activity and harvests sensitive information, poses a significant risk to corporate and personal data. Password theft, designed to steal login credentials and other critical data, saw an even sharper rise, with detections increasing by 26%.

These tools enable cybercriminals to compromise accounts, infiltrate networks, and perpetrate financial fraud, exploiting both individuals and organisations.

Phishing continues to pose a serious threat

Phishing remains a cornerstone of cybercrime in Africa, with Kaspersky detecting 66 million phishing link clicks in the region in 2024, including 14.8 million by corporate users.

These attacks often lure victims into divulging sensitive information or downloading malware, capitalising on low digital literacy rates and the growing adoption of digital financial services. Ransomware, too, continues to wreak havoc, locking critical systems and demanding hefty payments, further straining Africa’s cybersecurity defences.

Maher Yamout, Lead Cybersecurity Researcher with Kaspersky’s Global Research and Analysis Team, attributes the rising threats to different factors.

“In the B2B sector, the shift to hybrid work and rushed digitisation often outpaces cybersecurity measures, exposing businesses to APTs,” he explains. “In the B2C space, the boom in digital financial services, combined with limited digital literacy, makes individuals easy targets for opportunistic attacks.”

Yamout advocates for a unified approach, emphasising collaboration, specialised cybersecurity training, and digital literacy initiatives. He points to efforts like the African Cyber Surge operation as a model for building a resilient digital ecosystem.

To counter these threats, Kaspersky offers tailored recommendations.

For individuals, the company advises avoiding untrusted apps and links, enabling two-factor authentication, using strong passwords managed by reliable tools, and installing timely software updates.

A robust security solution like Kaspersky Premium is also recommended to protect devices. Organisations, meanwhile, should prioritise software updates and secure remote desktop services and adopt solutions like Kaspersky NEXT EDR Expert for enhanced endpoint visibility and automated threat detection.

Regular, isolated data backups and access to up-to-date threat intelligence are critical to staying ahead of evolving tactics, techniques, and procedures (TTPs) used by cybercriminals.

As Africa continues its quest for digital transformation, the stakes have never been higher. This report is a clarion call for governments, businesses, and individuals to bolster their defences through strategic collaborations and adequate investment in education and technology to build a safer digital future, turning the tide against a relentless wave of cybercrime.