Microsoft has released its 2025 Digital Defense Report. The report revealed how artificial intelligence (AI) is transforming cybercrime and placing Africa at the center of emerging digital threats. The report was drawn from over 100 trillion daily security signals and paints a concerning picture of evolving attacker sophistication and the continent’s growing exposure to high-value cyber incidents.
According to Kerissa Varma, Microsoft’s Chief Security Advisor for Africa, attackers are increasingly testing new cyber tactics on the continent.
“Africa isn’t just a target, it has become a proving ground for the latest cyber threats,” said Varma. “We’re witnessing attackers harness AI to craft phishing messages tailored to local languages and cultural contexts, impersonate trusted individuals, and exploit the very platforms we depend on.”
Microsoft’s findings show that 80% of cyber incidents in 2024 involved attempts at data theft, with financial gain driving most attacks. Supporting data from the World Economic Forum’s Cybercrime Impact Atlas 2025 shows that while arrests increased across 19 African countries, the economic toll of cybercrime surged from $192 million to $484 million, and the number of victims jumped from 35,000 to 87,000.
Business Email Compromise Tops the List
The report also revealed that Business Email Compromise (BEC) is the most financially damaging cyber threat in Africa. BEC accounted for 21% of successful intrusions, surpassing even ransomware.
Microsoft also points to South Africa as a global hotspot for BEC infrastructure and money mule recruitment, citing Storm-2126, a Nigerian-origin cybercriminal group operating from South Africa, as an example.
Artificial intelligence is now a key enabler of cybercrime across Africa. AI-driven phishing campaigns boast a 54% click-through rate, which is 4.5 times higher than traditional attacks.
Adversaries are deploying autonomous malware that can move laterally and escalate privileges without human control. Microsoft has also recorded a 195% increase in AI-generated IDs used to bypass identity verification and exploit free trial services.
Varma urges African organisations to rethink their security strategies:
“Relying on trust alone is no longer enough. Critical cyberattacks often unfold beyond traditional endpoint detection, and early warning signs like credential theft should be treated as indicators of larger breaches.”
Microsoft’s Secure Future Initiative (SFI), its largest cybersecurity engineering effort to date, is helping African businesses strengthen their digital resilience. The program redefines how Microsoft designs, builds, and operates its software, embedding security into every layer.
“By investing in comprehensive cybersecurity strategies and leveraging AI-powered defenses, Africa can position itself as a crucial front line against emerging threats,” Varma added.
The full Microsoft Digital Defense Report 2025 is available here.
For these and more stories, follow us on X (Formerly Twitter), Facebook, LinkedIn and Telegram. You can also send us tips or just reach out on [email protected].
Also Read: Microsoft Launches ARC Cybersecurity Initiative With Kenya’s NC4
