Kabogo Warns Cyber Threats Kenya

Kenya’s digital transformation has entered a new phase focused on accountability, system resilience and trust, Information and Digital Economy CS William Kabogo has said.

He said the country is no longer debating digital adoption but grappling with governance, security and integrity in an increasingly connected economy.

Kabogo spoke on Wednesday at the ISACA (Information Systems Audit and Control Association) Kenya Annual Conference 2026.

Cup pressure peaks as Shabana host Kenya Police in blockbuster quarter-final Football

Upper Hill coach Walgwe unperturbed despite drawing giants in Prescott Cup group phase Rugby

He said the expansion of online public services has improved efficiency and accountability but also exposed the country to rising cyber risks, warning that cyber threats are becoming more sophisticated and increasingly targeted at critical national systems.

“There is a rapid expansion of online public services, which comes with rising cyber risks. But this does not deter us from deepening our transition into a fully digitised economy,” Kabogo said.

He said Kenya’s digital economy is now firmly established, with the key challenge shifting from innovation to governance.

“The digital economy is no longer imagined. It is established. What is now at stake is not consensus but governance, not innovation alone but accountability,” he said.

The government has accelerated digitisation through the eCitizen platform and the continued expansion of national ICT infrastructure. Fibre optic connectivity has grown from about 8,900 kilometres in 2022 to about 30,000 kilometres currently, with a target of 100,000 kilometres by 2032.

On service delivery, eCitizen has expanded from fewer than 400 services in 2022 to more than 23,000 today, reflecting a rapid shift towards digital public access.

To bridge the digital divide, the government says about 1.9 million young people have undergone digital literacy training, supported by the rollout of hundreds of digital hubs across the country.

However, Kabogo warned that this progress has been accompanied by escalating cyber risks. He said the country recorded 4.56 billion cyber events in a single quarter, representing a 441 per cent surge.

“These risks are not abstract. They are directly tied to essential national systems,” he said, pointing to banks, hospitals, revenue platforms and mobile money systems that handle over 100 million transactions daily.

He warned that failure in digital systems could undermine public confidence and economic stability.

The government is currently reviewing key legal frameworks, including the Kenya Information and Communication Act, while strengthening enforcement of the Data Protection Act through the Office of the Data Protection Commissioner, which has already issued compensation orders in several cases involving telecoms, digital lenders and private platforms.

New policy instruments under development include a Kenya Cloud Policy and an Artificial Intelligence and Emerging Technologies Policy, aimed at strengthening data sovereignty and regulating emerging technologies.

“Innovation will not be slow, but it will not be ungoverned,” Kabogo said, adding that AI must be developed within strong governance frameworks to safeguard public trust.

ISACA Kenya Chapter president Bonface Asiligwa said the digital era is increasingly defined by trust, resilience and adaptability rather than compliance alone.

He said digital trust is becoming central to organisational reputation and leadership, while cyber security professionals continue to operate under growing pressure as threats evolve faster than controls and resources remain constrained.

Kenya is positioning itself as a regional leader in digital transformation, with upcoming forums expected to shape continental conversations on digital integration, governance and trust.

Instant Analysis

Kenya’s digital transformation is clearly shifting from expansion to consolidation, with greater emphasis on governance, cyber security and institutional trust. While the rapid growth of eCitizen services and fibre infrastructure signals strong progress in digitalisation, the surge in cyber threats highlights the vulnerabilities that come with scale. The government’s focus on legal reforms and new policy frameworks, including AI and cloud regulation, reflects an attempt to stay ahead of emerging risks. However, the real test will be implementation capacity, inter-agency coordination and sustained investment in cyber security. Ultimately, digital success will depend not just on access, but on resilience and public confidence.