Mobile authentication is key to negating cybercrime in East Africa

Issue 3 2021 Information Security

The rapid pace of digital transformation in East Africa has had a significant impact on not only how people live their lives, but also on how communication and commerce are conducted, allowing the modern customer to do everything – immediately.

Doreen Kinja.

This has also had the unintended consequence of altering the way we are targeted by fraudsters and cybercriminals, notably changing the nature of cyber threats and attacks that we face in a mobile-first digital world.

According to an Accenture report published in 2019, the total value at risk of cybercrime over the next five years is an estimated $5,2 trillion. The average cyberattack costs $13 million, according to the same report, with phishing, social engineering and stolen device crime making up $2,4 million of the cost of an average attack.

Statistics drawn from various reports show that the threat of cybercrime and insecurity is prevalent in the East African region. Uganda lost 42 million shillings to cybercrime in 2017, while in 2018, Rwanda lost six billion francs. In Kenya, between April and June 2019 alone, the country experienced 26,6 million cyber threats.

Additionally, in a mobile-first digital landscape such as the East African region, the proliferation of mobile devices and mobile Internet penetration has opened the door to mobile cybersecurity threats. Mobile users are at risk of threats such as SIM card swap, account takeover, ‘man-in-the-middle’ and phishing attacks.

High Internet penetration

As of December 2020, reports Statista (, Kenya had an Internet penetration of approximately 85.2%. This high rate is mainly because Kenya is home to M-Pesa, a mobile wallet provider that offers a secure payment system that encourages Internet access.

Therefore, mobile authentication is becoming increasingly important in the overall East African market, not only as a means to effectively counter mobile cybersecurity threats, but to simultaneously enhance customer experience (CX) and increase engagement with brands.

Mobile authentication is the process of verifying a user’s identity through their mobile device. This verification can be done seamlessly, without interrupting the customer experience. In practice, this means that organisations can streamline processes while simultaneously protecting their business and their customers from cybercrime.

Mobile authentication services verify users’ identities through different means, including: Silent Mobile Verification (SMV), Know Your Customer (KYC), SIM Swap Detection and Instant Form Filling.

The advent of smartphones has led to a steady rise in mobile shopping across East Africa, with recent data showing that consumers are becoming more comfortable with completing transactions on their phones. This is in no small part due to the increase of mobile security and customer trust.

Increasing user trust and safety

The advantages of proper mobile authentication are multiple, as it touches upon the entire customer journey. By creating a safe mobile environment, organisations can increase user trust and safety. Mobile verification continuously validates the customer’s identity throughout the customer journey. This increases user trust and safety by keeping their account protected.

Mobile authentication can also facilitate faster and more convenient onboarding. Silent verification can ensure customers are who they say they are during the onboarding process and instant form filling speeds up the process.

Furthermore, mobile authentication can also lead to reduced cart abandonment, as instant form filling makes the shopping experience more streamlined and convenient. At the same time, mobile authentication can ensure GDPR compliance, as authentication services are based on a user-centric approach, ensuring that neither companies nor mobile network operators learn anything new about the end-user, apart from the information they already hold.

Mobile authentication services help to keep customers protected, while improving user experience and increasing engagement. Mobile authentication protects user information by providing a strong authentication layer consisting of three real-time identification and authorisation services. These are used to safeguard online transactions for user-facing applications and mobile websites, resulting in an improved and more secure user experience.

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

New ransomware using BitLocker to encrypt data
Technews Publishing Information Security Residential Estate (Industry)
Kaspersky has identified ransomware attacks using Microsoft’s BitLocker to attempt encryption of corporate files. It can detect specific Windows versions and enable BitLocker according to those versions.

Create order from chaos
Information Security
The task of managing and interpreting vast amounts of data is akin to finding a needle in a haystack. Cyberthreats are growing in complexity and frequency, demanding sophisticated solutions that not only detect, but also prevent, malicious activities effectively.

Trend Micro launches first security solutions for consumer AI PCs
Information Security News & Events
Trend Micro unveiled its first consumer security solutions tailored to safeguard against emerging threats in the era of AI PCs. Trend will bring these advanced capabilities to consumers in late 2024.

Kaspersky finds 24 vulnerabilities in biometric access systems
Technews Publishing Information Security
Customers urged to update firmware. Kaspersky has identified numerous flaws in the hybrid biometric terminal produced by international manufacturer ZKTeco, allowing a nefarious actor to bypass the verification process and gain unauthorised access.

Responsible AI boosts software security
Information Security
While the prevalence of high-severity security flaws in applications has dropped slightly in recent years, the risks posed by software vulnerabilities remain high, and remediating these vulnerabilities could hinder new application development.

AI and ransomware: cutting through the hype
AI & Data Analytics Information Security
It might be the great paradox of 2024: artificial intelligence (AI). Everyone is bored of hearing it, but we cannot stop talking about it. It is not going away, so we had better get used to it.

NEC XON shares lessons learned from ransomware attacks
NEC XON Editor's Choice Information Security
NEC XON has handled many ransomware attacks. We've distilled key insights and listed them in this article to better equip companies and individuals for scenarios like this, which many will say are an inevitable reality in today’s environment.

iOCO collaboration protection secures Office 365
Information Security Infrastructure
The cloud, in general, and Office 365, in particular, have played a significant role in enabling collaboration, but it has also created a security headache as organisations store valuable information on the platform.

Cybercriminals embracing AI
Information Security Security Services & Risk Management
Organisations of all sizes are exploring how artificial intelligence (AI) and generative AI, in particular, can benefit their businesses. While they are still figuring out how best to use AI, cybercriminals have fully embraced it.

A strong cybersecurity foundation
Milestone Systems Information Security
The data collected by cameras, connected sensors, and video management software can make a VMS an attractive target for malicious actors; therefore, being aware of the risks of an insecure video surveillance system and how to mitigate these are critical skills.