Leading cyber threats detected in Kenya
Targeting internet users between April and June 2025
a y agoRosa MumanyiInfographics
Kenya recorded more than 4.3 billion cyber threat incidents between October and December 2025, highlighting the scale and growing sophistication of digital risks facing internet users, according to data from the Communications Authority of Kenya.
The latest cybersecurity report shows system attacks accounted for the overwhelming majority of incidents, standing at 4,375,339,677 cases over the three-month period. This pushed the total number of detected threats to about 4.5 billion, underlining the pressure on digital infrastructure and end users.
Malware attacks were the second most reported threat at 70,907,781 incidents. These were followed by distributed denial of service (DDoS) attacks at 58,316,952 and brute force attacks at 42,785,432.
Web application attacks reached 11,570,134, while mobile application attacks were the least reported among the leading categories at 310,009.
The authority noted a sharp rise in overall threats, with a 441.27 per cent increase compared to the previous three-month period of July to September 2025. The spike points to an increasingly hostile cyber environment.
Among the key factors driving the trend are inadequate system patching, which leaves systems exposed to known vulnerabilities, and insufficient user awareness of threat vectors such as phishing and other social engineering techniques.
The report also cites the growing adoption of AI-driven attacks and machine learning technologies by malicious actors.
![[PHOTOS] The new Ngong –Naivasha Road viaduct](https://cdn.radioafrica.digital/image/2026/06/64d4f771-4432-4aee-ba3c-2f304c4436ec.jpg)
![[PHOTOS] 'Mr Speaker Sir' Gen Z protester in court](https://cdn.radioafrica.digital/image/2026/06/b3e62d8e-25c3-4780-90f9-4eb48b1ce8a7.jpg)
