The Country’s Digital Success Is Creating New Risks
Kenya’s digital transformation story is often told through success.
Millions of citizens access government services online. Mobile money has become part of everyday life. Businesses increasingly rely on cloud systems, digital payments, and connected technologies to operate. Across the country, schools, hospitals, financial institutions, and public agencies are embracing digital platforms at an unprecedented pace.
Yet as Kenya becomes more connected, it is also becoming a bigger target.
A recent report by the National Computer and Cybercrime Coordination Committee (NC4) revealed that Kenya recorded more than three billion cyberattack attempts within just three months. The attacks targeted government systems, cloud infrastructure, businesses, and critical digital services, highlighting the growing sophistication of cybercriminals operating in an increasingly digital economy.
The numbers are alarming, but they also explain why Kenya has moved to strengthen its cybersecurity architecture through the establishment of the National Cybersecurity Agency (NCSA), a new institution designed to coordinate the country’s cyber defence efforts.
Cybercrime Has Become a National Security Issue
Cyberattacks are no longer limited to isolated hacking incidents.
Today’s threats target financial systems, government databases, communication networks, healthcare platforms, and even critical infrastructure. Criminals are increasingly exploiting vulnerabilities in digital systems to steal information, commit fraud, disrupt operations, and gain unauthorised access to sensitive data.
According to NC4, some of the most common offences reported in recent months include identity theft, computer fraud, cyber harassment, digital payment fraud, unauthorised system access, and interference with computer systems. These attacks affect individuals, businesses, and public institutions alike.
The challenge is growing rapidly. Previous cybersecurity reports from the Communications Authority have consistently shown billions of cyber threat events being detected every quarter, with system vulnerabilities accounting for the overwhelming majority of incidents.
As more services move online, cybersecurity is increasingly being viewed not simply as a technology concern, but as an economic and national security priority.
Why Kenya Created the National Cybersecurity Agency
The scale of these threats has prompted the government to rethink how cybersecurity is managed across the country.
The newly established National Cybersecurity Agency has been created to serve as Kenya’s central coordinating body for cybersecurity matters. Its role extends beyond responding to cyberattacks. The agency is expected to provide strategic leadership, coordinate cybersecurity initiatives across government institutions, support critical infrastructure protection, and strengthen the country’s overall cyber resilience.
At its core, the agency is designed to ensure that cybersecurity efforts are no longer fragmented across different institutions.
As cyber threats become more sophisticated, effective defence requires coordination between government agencies, regulators, law enforcement bodies, private sector organisations, telecommunications providers, and international partners. The NCSA is intended to provide that coordination framework.
Protecting Critical National Infrastructure
One of the agency’s most important responsibilities is safeguarding Critical Information Infrastructure.
These are systems whose disruption could have serious consequences for the country. They include financial services, telecommunications networks, energy systems, transport infrastructure, healthcare systems, government platforms, and digital public services.
A successful attack against any of these sectors could disrupt essential services and create significant economic losses.
The agency will therefore work closely with operators of critical infrastructure to identify vulnerabilities, improve security standards, monitor emerging threats, and coordinate responses when incidents occur.
This function has become increasingly important as cybercriminals worldwide shift their attention towards high-value targets capable of causing widespread disruption.
Strengthening Kenya’s Cyber Defence Capabilities
The agency’s mandate also includes threat monitoring, incident response coordination, cyber risk assessment, and cybersecurity preparedness.
Rather than waiting for attacks to occur, the goal is to develop proactive capabilities that can identify threats before they escalate into major incidents.
This includes analysing emerging cyber risks, issuing advisories, coordinating national responses, and helping institutions strengthen their defences against evolving attack methods.
The challenge is significant.
Recent reports indicate that cybercriminals are increasingly exploiting system vulnerabilities, deploying malware, conducting brute-force attacks, launching denial-of-service campaigns, and targeting mobile applications. Many of these attacks are becoming more sophisticated through the use of automation and artificial intelligence.
Defending against such threats requires continuous monitoring and rapid response capabilities that few individual organisations can maintain on their own.
Supporting Cybercrime Investigations
The National Cybersecurity Agency is not replacing existing law enforcement institutions. Instead, it complements their work.
While agencies such as the Directorate of Criminal Investigations continue to investigate cybercrime offences, the NCSA provides a national framework for coordination, intelligence sharing, threat analysis, and technical support.
The agency is expected to work closely with investigative bodies, prosecutors, regulators, and international cybersecurity organisations to improve the country’s ability to prevent, detect, investigate, and prosecute cyber-related offences.
As cybercrime becomes increasingly transnational, collaboration between institutions is becoming essential.
Many modern cyberattacks originate outside national borders, making international cooperation a critical component of cybersecurity strategy.
Building a Cyber-Aware Society
Technology alone cannot solve the cybersecurity challenge.
Studies consistently show that human behaviour remains one of the biggest vulnerabilities within digital systems. Phishing attacks, weak passwords, social engineering schemes, and poor cybersecurity practices continue to create opportunities for cybercriminals.
For this reason, the agency’s mandate also includes public awareness and cybersecurity education.
Businesses, public institutions, and ordinary citizens all play a role in securing the digital ecosystem. Raising awareness about online threats, safe digital practices, and emerging risks is increasingly viewed as a critical line of defence.
A well-informed user is often the first barrier against cybercrime.
Kenya’s Digital Future Depends on Cybersecurity
Kenya’s ambition to become a leading digital economy rests on trust.
Citizens must trust digital government services. Businesses must trust online transactions. Investors must trust the security of digital infrastructure. Financial institutions must trust the systems that process billions of shillings every day.
Without strong cybersecurity, that trust becomes difficult to maintain.
The report showing more than three billion cyberattack attempts in just three months serves as a reminder of the scale of the challenge facing the country. While many of these attacks were successfully detected and blocked, the volume alone demonstrates how aggressively cybercriminals are targeting digital systems.
The creation of the National Cybersecurity Agency represents an acknowledgement that cybersecurity can no longer be treated as a technical issue operating quietly in the background.
It is now a strategic national priority.
As Kenya continues expanding digital services, embracing artificial intelligence, strengthening digital public infrastructure, and growing its technology sector, the ability to secure those systems will increasingly determine the success of the country’s digital transformation journey.
In the digital age, economic growth and cybersecurity are becoming inseparable. Protecting one increasingly means protecting the other.