Kenya is losing billions of shillings annually to cybercrime as attackers shift strategy from targeting large organisations to exploiting the mass market through social media, deepfakes and high-reach digital platforms.
Experts say this shift is making cybercrime more widespread, faster and harder to control.
Over the past years, organisations have boosted their digital protection budgets and early detection systems making it hard for cyber breaches.
Industry experts say the evolution marks a turning point in how cybercriminals operate, moving from technically complex corporate breaches to scalable, consumer-focused scams that prioritise reach and speed over sophistication.
ESET cybersecurity engineer Allan Juma says traditionally, cyber attacks in Kenya largely targeted institutions, banks, telcos and government agencies, through methods such as ransomware and network breaches.
“The model has changed, attackers are no longer just going after companies. They are now targeting the masses because that’s where the money is,” said Juma.
ESET in their latest findings for the Kenyan market, show that, while these threats persist, there is now a noticeable pivot towards individuals, enabled by the rapid growth of social media and digital financial services.
At the centre of this shift is the rise of investment scams, where cybercriminals promise quick, life-changing returns to unsuspecting users.
These schemes are increasingly being amplified through hacked or impersonated accounts of prominent figures, allowing fraudsters to leverage trust and influence to reach large audiences almost instantly.
“A notable example occurred in 2025 when the social media account of late opposition leader Raila Odinga was compromised and used to promote a fake cryptocurrency scheme,” Juma told the Star in an interview.
He points out that the scam relies on a highly convincing AI-generated video, commonly referred to as a deepfake, to endorse the fraudulent investment.
“When a recognised figure appears to approve something, people lower their guard. Even if it’s a small amount, thousands of people will send money within minutes,” Juma said.
According to data from the Communications Authority of Kenya, cybercrime losses have surged to approximately Sh4.6 billion, as of December 2025, pointing to a growing financial toll on individuals and businesses alike.
The shift reflects a broader transformation in cybercrime economics. Rather than spending time penetrating complex corporate systems, attackers are now adopting a high-volume, low-barrier approach, similar to consumer tech business models.
“If I target someone with 100 followers, there’s no return on investment. But if I take over an account with a million followers, even a small percentage clicking translates into huge gains,” he noted.
This approach mirrors digital marketing strategies, where success is measured by reach, engagement and conversion rates.
Fraudsters are effectively running cybercrime operations like scalable online businesses optimising for virality and rapid monetisation.
Unlike traditional cyberattacks, which may target a single organisation, these scams distribute risk across thousands of individuals, making them harder to detect and contain.
In some cases, victims may lose relatively small amounts individually, but collectively the figures run into billions.
“Cybercriminals are essentially crowdsourcing their victims,” Juma said. “Instead of stealing millions from one company, they take smaller amounts from thousands of people.”
While this digital expansion is a sign of economic progress, it also exposes more users to online risks.
“The fact that we are seeing more attacks also means we are more advanced digitally,” Juma noted. “But it also means we are more vulnerable.”
Comments 0
Sign in to join the conversation
Sign In Create AccountNo comments yet. Be the first to share your thoughts!