[ACCI-CAVIE] As cyberattacks escalate globally, Africa is facing a rising wave of online financial crimes. These sophisticated schemes target both individuals and businesses, exploiting weak cybersecurity infrastructures and leveraging advanced digital tactics.
A Rapidly Growing Threat
“Cyberattacks have become a major global threat, with an increasing focus on financial crimes online. These well-organized tactics affect both businesses and individuals,” says Sidy Diop, a cybersecurity consultant and Red Team leader.
In Africa, particularly in West Africa, cybercrime is gaining ground. From online scams and ransomware to Business Email Compromise (BEC) schemes, the continent is increasingly vulnerable. According to Diop, this vulnerability stems from inadequate cybersecurity infrastructures, weak digital defense systems, and insufficient national cybersecurity policies across many countries in the region.
A Coordinated Response: Operation Serengeti
To combat this growing menace, Interpol and Afripol launched Operation Serengeti, a large-scale anti-cybercrime initiative across 19 African countries. Conducted between September 2 and October 31, 2024, the operation led to the arrest of 1,006 suspects and the dismantling of 134,089 malicious networks and infrastructures.
The operation, supported by private sector partners and intelligence-sharing, identified over 35,000 victims and exposed financial losses amounting to $193 million (1.2 billion CFA francs) globally.
The Methods of Cybercriminals
Cybercriminals employ a range of tactics, including phishing, malware deployment, and social engineering. By impersonating legitimate organizations through emails, messaging platforms, or fake websites, they extract sensitive personal and financial information. These include login credentials, bank details, and other data used for unauthorized account access, identity theft, or fraud.
Phishing attempts often present urgent or alarming messages to pressure victims into clicking malicious links, downloading infected files, or submitting confidential information. These seemingly simple attacks frequently pave the way for more severe cybercrimes, such as ransomware attacks.
Country-Specific Operations
- Senegal: Authorities arrested eight individuals, including five Chinese nationals, for a Ponzi scheme valued at $6 million. The scam affected 1,811 victims and involved over 900 SIM cards and $11,000 in cash.
- Cameroon: A multi-level marketing scam lured victims from seven countries with false job or training promises. The perpetrators extorted at least $150,000 (9.3 billion CFA francs) from membership fees.
- Angola: In Luanda, a virtual casino scam targeting Nigerian and Brazilian gamers was dismantled. This international criminal group was arrested with 200 computers and over 100 mobile phones seized.
A Call for Stronger Cybersecurity
Experts emphasize that addressing this threat requires collective action:
- Awareness and Training: Regularly educate employees and the public about phishing detection and safe digital practices.
- Investing in Technology: Implement advanced intrusion detection systems, firewalls, and up-to-date antivirus solutions. Encrypt sensitive data to protect it even if accessed unlawfully.
- Continuous Audits: Regularly assess systems and networks for vulnerabilities and monitor activity logs for anomalies.
- Policy Reinforcement: Collaborate regionally and internationally, sharing intelligence and creating strict cybersecurity laws enforced rigorously.
Partnerships for the Future
The Serengeti operation was funded by organizations like the UK Foreign, Commonwealth & Development Office and the German Federal Foreign Office. It underscores the importance of partnerships between governments, private sector entities, and NGOs in securing Africa’s digital future.
By taking a united stand against cybercrime, Africa can turn the tide, protecting its businesses, citizens, and economies from this ever-evolving digital threat.
The editorial staff