by AKANI CHAUKE
JOHANNESBURG, (CAJ News) – KASPERSKY, the global cybersecurity and digital privacy company, reports it detected and blocked over 38 million phishing links that were clicked in Africa from November 2024 to October 2025.
This is disclosed in a report indicating that the company analysed phishing and scam campaigns observed from January through September 2025 and found that 88,5 percent of attacks globally sought credentials for various online accounts.
Another 9,5 percent targeted personal data such as names, addresses and dates of birth, while 2 percent focused on bank card details.
Kaspersky research shows that most phishing pages transmit stolen information via email, Telegram bots, or attacker-controlled panels, before it enters underground resale channels.
Olga Altukhova, senior web content analyst at Kaspersky, said their analysis showed that credentials account for nearly 90 percent of phishing attempts.
The official explained that once collected, logins, passwords, phone numbers and personal details were aggregated, checked and resold, sometimes years after the initial theft.
“Combined with new information, even old credentials can enable account takeovers and targeted attacks against both individuals and organisations,” Altukhova said.
The expert added that by leveraging open-source intelligence and old breach data, attackers could craft highly personalised scams, turning one-time victims into long-term targets for identity theft, blackmail or financial fraud.
– CAJ News