Sergey Bereza, Business Development Manager for Positive Technologies company in African Countries, emphasized in an interview with Sputnik Africa that government institutions and financial organizations are increasingly being targeted by the growing cyberattacks across Africa.
"Government institutions and financial organizations are the primary targets of cybercriminals in Africa, accounting for a third and a fifth of successful cyberattacks, respectively," he said.
The statistics underscore the growing vulnerability of key sectors, with 15% of cyberattacks in 2023 proving successful against public institutions—a figure comparable to global trends.
The consequences of such attacks are far-reaching, with one in five successful cyber breaches disrupting core operations in affected companies. This can spell disaster for economies dependent on uninterrupted financial and governmental functions.
Countries like Ethiopia, Nigeria, and South Africa are particularly at risk due to their rapid digitalization and increasing reliance on online platforms for e-commerce, governance, and communication. Bereza noted that Ethiopia's ambitious "Digital Ethiopia 2025" plan is pushing the country's technology forward, but it also shows the urgent need to improve cybersecurity protections.
Bereza emphasized the need for a proactive approach to cybersecurity.
"Organizations should conduct thorough risk analyses and compile lists of unacceptable events that could significantly harm their operations," he advised.
By identifying critical assets and focusing protection efforts, companies can create more robust defense mechanisms. However, technology alone isn't enough; employee awareness is crucial, according to the expert. Regular training in cybersecurity basics—such as recognizing phishing attempts and safely managing software—plays a pivotal role in reducing vulnerabilities.
Africa's digital development has also attracted the use of sophisticated malware and social engineering tactics. Hackers often exploit fraudulent Android applications to steal sensitive user data, including credentials, device information, and call logs.
"This application infected 12 million users from various countries, including Egypt, Kenya, and Nigeria," Bereza said, highlighting the scope of the issue.
Financial and governmental sectors are not the only targets. Telecommunications companies and industrial enterprises also face mounting risks. Constant network monitoring and regular updates of software and applications are essential to mitigate known vulnerabilities. Leveraging international cybersecurity practices, as seen in Ethiopia’s strategy, could help countries build more resilient systems, the speaker noted.
Africa’s digital transformation presents a unique opportunity to leapfrog into a future of innovation and growth, but this progress must be met with caution.
“The strategy to prevent unacceptable events should include security measures and constant network activity monitoring using modern protection tools,” Bereza aptly put it, concluding the interview.