Kaspersky Unveils AI Risks and Cyber Threat Landscape at AI Everything Kenya x GITEX Kenya

At the AI Everything Kenya x GITEX Kenya event, held from May 19 to 21, Kaspersky, a leading global cybersecurity firm, addressed the evolving threat landscape in Kenya and the broader East African region. The company highlighted the dual nature of artificial intelligence (AI) advancements, which, while fostering innovation, also introduce significant cyber threats to both businesses and individual users.

Kaspersky’s analysis indicates that the rapid adoption of AI technologies is accompanied by new risks, including AI-driven social engineering campaigns, deepfake fraud, and the emergence of “Shadow AI” within organizations. To mitigate these threats, Kaspersky emphasizes the necessity for organizations to implement clear cybersecurity policies, robust controls, and comprehensive employee training.

Chris Norton, General Manager for Sub-Saharan Africa at Kaspersky, noted that as organizations in Kenya and the surrounding region accelerate their digital transformation, cybersecurity has become a critical priority at the board level. He remarked on the increasing recognition that innovation and security must progress in tandem. Events like GITEX play a vital role in educating businesses about the opportunities presented by AI and digital technologies, as well as the precautions needed to navigate the associated cyber risks.

Cyber Threat Landscape Developments

The current cybersecurity challenges are compounded by the rise of AI risks. Data from Kaspersky reveals alarming trends: in 2025, password stealer attacks surged by 83% year-over-year in Kenya, with a 56% increase across Sub-Saharan Africa. Similarly, spyware attacks rose by 83% in Kenya and 53% regionally, while backdoor attacks increased by 25% in Kenya and 8% across the region. Although exploit attacks showed a slight decline, they remain a significant concern due to their potential for mass spread and unauthorized access to user systems. Ransomware continues to be a serious threat, with 7.62% of organizations in Africa reporting ransomware detections in 2025.

Advanced Persistent Threats (APTs) are among the most critical risks facing enterprises today. The Kaspersky Security Services Global Report indicates that APT groups were detected and blocked in 21% of customer environments in 2025, accounting for 23% of all high-severity incidents. These organized groups increasingly leverage AI-enhanced techniques alongside social engineering and targeted intrusion methods to maximize their effectiveness.

Cybersecurity Traps of AI

Kaspersky experts warn that cybercriminals are utilizing AI at various stages of cyberattacks, from preparation and communication to vulnerability probing and tool deployment. They often conceal evidence of AI involvement to complicate investigations and attribution. Additionally, malicious actors are distributing malware disguised as AI tools to compromise sensitive information.

The proliferation of deepfakes and AI-generated fraudulent content is another growing concern. As AI technologies become more sophisticated, distinguishing authentic content from manipulated material is increasingly challenging. Kaspersky researchers caution that AI models may be susceptible to “unintended memorization,” where they retain fragments of sensitive information that attackers can later exploit. Other risks include malicious tampering with training datasets, the injection of harmful logic into AI software, and the exploitation of vulnerabilities within AI systems.

The advent of AI agents—systems capable of autonomously executing tasks on behalf of users—creates another significant attack surface. Kaspersky highlights that these systems can be manipulated through adversarial content or misconfigured settings, potentially leading to harmful real-world consequences.

Kaspersky also points to the challenge of “Shadow AI,” where employees utilize public AI services without oversight from IT departments. This practice can lead to uncontrolled data flows and increased risks of confidential information exposure. A recent Kaspersky study titled “Cybersecurity in the Workplace: Employee Knowledge and Behaviour” revealed that 87.8% of professionals in Kenya use AI tools for work-related tasks, such as text editing, email writing, data analytics, and content creation. However, only 35% reported receiving cybersecurity training related to AI usage.

Essential Actions in the AI-driven IT World

Kaspersky recommends that organizations regularly assess AI-related risks and establish comprehensive governance policies that define approved AI tools and acceptable data processing practices. Continuous employee training on secure AI usage, recognition of fraudulent AI services, and awareness of malicious links and prompt injection risks is essential.

To effectively manage the expanding array of cyber risks, organizations should adopt a comprehensive cybersecurity strategy that integrates advanced security technologies, reliable threat intelligence, robust internal processes, and ongoing employee education. Kaspersky’s AI-powered solutions, such as Kaspersky SIEM and the Kaspersky Next product line, offer real-time protection, threat visibility, and investigation capabilities.

For individual users, Kaspersky advises exercising caution when utilizing AI-powered tools. Users should carefully review privacy settings, verify the authenticity of AI applications, and double-check information generated by AI systems before making decisions based on automated outputs. Families are encouraged to maintain open discussions with children regarding their use of AI technologies and online safety practices.

Visit the Kaspersky stand at B10 in Hall 2 at GITEX Kenya for more information.

Source: www.zawya.com

Published on 2026-05-19 20:28:00 • By the Editorial Desk

Read all the latest developments and breaking updates in the Latest News section.