Hackers have successfully targeted the Micro and Small Enterprise Authority (MSEA), a key Kenyan government agency, exposing sensitive data and putting it up for sale on the Dark Web.
This breach highlights significant vulnerabilities in the country’s digital infrastructure and raises concerns about the security of government and financial systems.
Details of the Cyberattack
The hackers claim to have gained access to MSEA’s backup systems and are selling live access to the agency’s backend database for USD 100,000 (approximately KES 12,950,000).
Shared screenshots show access to sensitive information, including SQL database dumps.
MSEA, which supports micro and small enterprises in Kenya, now faces a severe crisis. The leaked data includes internal records, financial information, and system access details.
Also Read: Achieving Zero Trust security for Active Directory: Best practices and implementation
If sold, this data could severely compromise the privacy of MSEA’s clients and its operations.
The hackers have also referenced NLSBanking.com, a financial software provider serving over 20 institutions across Africa and Asia, including notable Kenyan banks such as NIC Bank, National Bank of Kenya, and Sidian Bank.
NLS Banking’s software manages critical services like internet banking, mobile banking, ATMs, and credit services.
If this breach extends to systems connected to NLSBanking.com, it could jeopardize the financial data of millions of customers.
A Broader Pattern of Cyber Threats in Kenya
This attack is not an isolated event. Kenya has witnessed a surge in cyberattacks in the last couple of months.
- July 2024: Pro-Russian hacking group Anonymous Sudan disabled over 5,000 online government services, affecting visa applications and mobile money services.
- November 2023 to April 2024: Suspected Chinese hackers targeted government agencies, exposing critical vulnerabilities.
- Recent INTERPOL and AFRIPOL Operation: Over 134,000 malicious networks in Africa were uncovered, with more than $8.6 million stolen in Kenya alone.
In a separate incident, the Ministry of Health’s X account was hacked in September 2024, with posts falsely claiming that officials were soliciting funds for church projects.
Current State of Cybersecurity in Kenya
According to the latest report by the Communications Authority of Kenya, Kenya’s cybersecurity landscape has grown increasingly complex, with over 900 million cyber threats detected between January and March 2024.
The government’s push to digitize services, while yielding many benefits, has also exposed the country to heightened cyber risks.
Greater reliance on digital platforms has created more attack surfaces for cybercriminals, making robust cybersecurity measures more important than ever.
Also Read: Smartphone attacks targeting Android devices in Kenya surge, CA report reveals
Attacks frequently exploit system vulnerabilities, misconfigurations, and outdated software. These weaknesses have made critical infrastructure sectors, such as government and financial services, prime targets for cybercriminals.
Common threats include malware, ransomware, phishing, and brute force attacks. Despite these challenges, Kenya has made strides in enhancing its cybersecurity resilience.
Initiatives like the National Cybersecurity Strategy 2022–2027 and the Computer Misuse and Cybercrimes Regulations 2024 aim to protect critical information infrastructure and strengthen response mechanisms.
Capacity-building programs and international collaborations further support the fight against cybercrime.
The Need for Robust Cybersecurity
The MSEA hack underscores the urgent need for robust cybersecurity measures across Kenya’s public and private sectors.
As digitization accelerates within government agencies, cybercriminals are exploiting vulnerabilities with increasing sophistication.
Kenya’s digital transformation must be accompanied by investments in cybersecurity to safeguard sensitive information and maintain trust in public institutions.
Without these measures, incidents like the MSEA breach will continue to put citizens and institutions at risk.
