A new report by global cybersecurity firm Kaspersky has identified Nigeria and South Africa among the countries experiencing a sharp rise in online threats during the first quarter of 2025.
The report, which covered the Middle East, Türkiye, and Africa region and was released on Monday, showed that Nigeria recorded “17.5 per cent of users” affected by web-based threats, while South Africa reported similar figures, according to TechAfrica news.
These statistics place both nations among the top five countries in the region facing heightened cybersecurity risks.
Türkiye led the list with “26.1 per cent of users” impacted, followed by Kenya at 20.1 per cent and Qatar at 17.8 per cent.
The findings were presented at Kaspersky’s annual Cyber Security Weekend for the META region, where cybersecurity experts discussed the growing complexity of threats facing the digital landscape.
According to the Head of the Global Research and Analysis Team for META and APAC at Kaspersky, Sergey Lozhkin, ransomware remains one of the most critical cybersecurity threats.
Although less prevalent in Africa compared to the Middle East due to slower digitisation and fewer high-value targets, countries like Nigeria and South Africa are becoming increasingly vulnerable.
This vulnerability is attributed to their expanding digital economies and limited awareness of cybersecurity best practices, leaving sectors such as manufacturing, finance, and government exposed.
Lozhkin said, “Ransomware is one of the most pressing cybersecurity threats facing organisations today, with attackers targeting businesses of all sizes and across every region, including META.
“Ransomware groups continue to evolve by adopting techniques, such as developing cross-platform ransomware, embedding self-propagation capabilities and even using zero-day vulnerabilities that were previously affordable only for APT actors.
“There is also a shift toward exploiting overlooked entry points — including IoT devices, smart appliances, and misconfigured or outdated workplace hardware.”
The report also highlighted the rise of cybercriminal groups such as FunkSec, which are leveraging artificial intelligence to develop and deploy ransomware at scale.
These groups employ ransomware-as-a-service models, combining data encryption with exfiltration and using AI to streamline their operations.
Other growing threats include the exploitation of internet-connected devices and the use of large language models to generate malicious code and phishing schemes.
To combat these risks, Kaspersky advises organisations to regularly update their systems, adopt layered security measures, and ensure their security teams are equipped with current threat intelligence.
The firm also recommends the deployment of ransomware-specific tools, such as its free Anti-Ransomware Tool for Business, as part of a broader cybersecurity strategy.
Kaspersky emphasised that proactive security measures, continuous system updates, and staff training remain essential in protecting against increasingly advanced cyber threats.
“Always keep software updated on all the devices you use to prevent attackers from exploiting vulnerabilities and infiltrating your network.
“Focus your defence strategy on detecting lateral movements and data exfiltration to the Internet. Pay special attention to outgoing traffic to detect cybercriminals’ connections to your network. Set up offline backups that intruders cannot tamper with. Make sure you can access them quickly when needed or in an emergency,” the report added.
Kaspersky is a global cybersecurity and digital privacy company founded in 1997.
