African businesses are grappling with a sharp rise in cyber threats, as new data from Kaspersky reveals a 14% increase in spyware attacks across the continent between 2023 and 2024. The findings, presented at the GITEX Africa conference in Morocco, highlight a worrying trend of escalating digital risks, with spyware malicious software secretly installed to monitor user activity and steal sensitive data emerging as a major concern for organizations.
In total, Kaspersky detected over 131 million web-based threats in Africa in 2024, with Kenya, South Africa, and Morocco recording the highest numbers of attempted attacks. Alongside the surge in spyware, password stealer malware incidents rose by 26%, further exposing businesses to credential theft and data breaches. Local threats, including malware spread via USB drives and CDs, also climbed by 4%, with Nigeria experiencing a staggering 169% increase in such attacks.
Experts attribute the spike in cyberattacks to the rapid digitization of African businesses, which often outpaces investment in cybersecurity measures. The widespread adoption of hybrid work models has expanded the attack surface, while the boom in digital financial services and low digital literacy rates have made both businesses and individuals attractive targets for cybercriminals.
Kaspersky’s lead cybersecurity researcher, Maher Yamout, emphasized the need for a unified approach to tackling these threats, urging African organizations to invest in specialized cybersecurity training, promote digital literacy, and foster collaboration across sectors. Initiatives like the African Cyber Surge operation and targeted educational programs are being touted as blueprints for building a more resilient digital ecosystem across the continent.
