Threat advisories
for African defenders.
Sector-specific security bulletins from OpasLabs. Each advisory contains IOCs, TTPs, affected sectors, and mitigation guidance - written for security teams operating in the East African context.
Latest advisories
Recent bulletins.
Updated continuously. IOC bundles available to OpasIntel subscribers.
Active SIM-swap campaign targeting Kenyan mobile banking users
OpasLabs has identified an active campaign exploiting SIM-swap vulnerabilities across Kenyan MNOs. Targeting mobile banking and M-PESA-linked accounts. IOCs and mitigation guidance included.
Mobile Money Fraud Tactics: April 2026 Review
Quarterly review of mobile-money fraud patterns observed across East African markets. Three new TTPs documented this quarter. STIX bundle available to OpasIntel subscribers.
Ransomware campaigns targeting Kenyan SACCOs - Q1 2026 update
Continued activity from three threat clusters documented in our 18-month SACCO ransomware research. New initial access vector observed. Patch priority list included.
Business email compromise targeting CFOs at East African NGOs
Spear-phishing campaign impersonating donor organizations targeting NGO finance staff. Wire transfer fraud via convincing domain lookalikes. Indicators and awareness guidance included.
Credential stuffing attacks on eCitizen and government portal accounts
Automated credential stuffing using breach databases from prior Kenyan data incidents. Government portal accounts with weak passwords being compromised at scale.
Supply chain risk: compromised open-source packages affecting Kenyan fintech developers
Three npm packages popular with East African fintech developers found to contain malicious payloads. Package names, versions, and removal instructions included.
Full IOC bundles via OpasIntel.
Each advisory summary is public. Full STIX bundles, detailed TTPs, attribution data, and automated SIEM integration are available to OpasIntel subscribers.