The company says the challenges are getting worse as businesses adopt artificial intelligence across daily operations without matching security management.

The data comes from Check Point’s AI Threat Landscape Report covering January to February 2026 which shows that while companies roll out generative and agent-based AI tools, many do so with limited visibility over how these systems handle data or interact with internal platforms.

AI adoption is spreading fast across sectors. In many organisations, staff now rely on several AI tools at the same time for writing, coding, analysis and customer support tasks.

That spread has created what researchers describe as “Shadow AI”, where usage sits outside formal monitoring systems.

Check Point says this trend is increasing exposure to risks such as data leaks, credential theft and weak control over third-party integrations.

The report also notes that AI systems are being used not just as tools, but as semi-autonomous systems that can act within enterprise environments.

Speaking on the findings, Ian van Rensburg, Head of Security Engineering, Africa at Check Point Software Technologies said, “AI transformation is no longer theoretical, it’s happening right now,” said.

“But too many organisations are modernising faster than they are securing. That gap is quickly becoming one of the most serious business risks in the region.”

The report highlights a case where a developer used an AI-powered development setup to generate 88,000 lines of malware code in less than a week. Check Point says this reveals how AI can shorten development cycles for both legitimate and malicious purposes.

It also found that 90% of organisations using generative AI recorded high-risk prompt activity. In addition, one in every 31 prompts carried the risk of exposing sensitive information, including proprietary code and confidential business data.

Employees, on average, now use around 10 AI tools, usually without central approval or oversight. This creates gaps that traditional security systems, built around networks and endpoints, may not detect.

Check Point argues that organisations need to treat AI systems as core assets rather than add-on tools. The company recommends securing models, data flows, application programming interfaces and autonomous agents together, instead of focusing only on surrounding infrastructure.

Hendrik de Bruin said AI adoption requires stronger governance structures. He pointed to the need for clearer risk classification, improved visibility and defined accountability across teams deploying AI systems.

The report also pointed to policymakers as several African countries work on national AI strategies. It suggests that security measures should be built into AI frameworks from the start, rather than added later during implementation.

Check Point adds that fragmented adoption, where teams deploy separate AI tools without central coordination, increases the likelihood of weak points across systems. These gaps can affect both internal operations and supply chains connected to external partners.

The company maintains that traditional cybersecurity approaches are no longer sufficient on their own in environments where AI systems can act with limited human input. It says organisations need prevention-focused models that address threats before they cause disruption.

Organisations balancing innovation with stronger surveillance are more likely to manage risks effectively while maintaining operational trust.

The post Cyberattacks in Africa Top 3,000 Per Week as AI Use Expands, Check Point warns appeared first on Tech | Business | Economy.

In the first half of 2025 alone, sub-Saharan Africa saw more than 42 million web-based attacks and nearly 96 million on-device attacks, including malware, spyware and backdoors, up from the previous year.

In Nigeria, almost 1.5 million online attack attempts were blocked by security tools, with nearly one in five users (19.9 %) targeted.

This threat occurrence makes choosing the right cybersecurity stack important. Two widely adopted options worldwide and more in African markets are Palo Alto Networks and Sophos.

Both provide firewalls and Secure Access Service Edge (SASE)-related functions. But they differ in design, cost structure, manageability and suitability for smaller security teams.

This article compares Palo Alto Networks and Sophos across threat prevention, networking and SASE functions, cost, ease of deployment, management and local support.

The Threat Environment in 2025–2026

Before looking at products, it helps to understand what these tools must defend against.

Cybercrime reports from late 2025 show a surge in attacks across the continent, with ransomware, business email compromise (BEC) and digital extortion reaching new heights.

Interpol-led enforcement measures in late 2025 disrupted cybercrime operations in 19 African nations, where attackers caused more than $21 million in losses before law enforcement intervened.

Globally, ransomware incidents increased steeply in 2025, with some reports indicating that nearly 78% of organisations experienced ransomware attacks over the prior year.

These show the scale and sophistication of modern threats and African enterprises that may not have large security teams, and need to ensure prevention is both effective and realistic.

Threat Prevention Capabilities

Palo Alto Networks

Palo Alto firewalls are built on the PAN-OS platform and supported by a threat intelligence backbone known as WildFire. Users frequently mention strong traffic inspection, advanced threat detection and integrated intrusion prevention.

In independent comparisons, Palo Alto products usually edge out competitors on threat prevention and machine-learning-driven analysis.

Palo Alto’s platforms are typically paired with Cortex XDR for endpoint visibility, and the vendor has been expanding cloud and identity security through recent acquisitions.

Sophos

Sophos firewalls, including Sophos XGS, focus on coordinated security with endpoint protection and centralised policy management. Sophos Central allows visibility across network and endpoints, and the company emphasises simplicity and integration in a single console.

Independent comparisons show that Sophos provides strong basic threat protection and advanced malware blocking, though some users find deeper configuration and reporting less mature than in higher-end platforms.

Direct Comparison

In independent user rating reports updated in early 2026, Palo Alto’s firewall solutions generally score slightly higher in threat prevention, while Sophos scores strongly for usability and value.

In one comparison, Palo Alto firewalls had a slightly higher average rating, and both products had high user recommendations.

Palo Alto may provide richer telemetry and deeper real-time threat visibility, but Sophos gives solid protection with easier management for smaller teams.

SASE and Network Security

Palo Alto Networks

Palo Alto’s SASE services centre on Prisma Access, a cloud-delivered security service that combines secure web gateway, cloud access security broker (CASB), zero-trust network access (ZTNA) and firewall services.

Prisma is widely deployed in larger, distributed enterprises, providing consistent security policies regardless of user location.

Recent product activities, including acquisitions in cloud monitoring and identity security, show Palo Alto is doubling down on integrated security beyond traditional appliances.

For organisations with complex hybrid networks and global reach, this unified approach can reduce gaps between network and cloud security.

Sophos

Sophos places its security service through Sophos XGS firewalls integrated with cloud management and synchronised protection with endpoint products.

The company has also moved into SASE-like offerings combining secure connectivity and visibility, though its approach is considered less fully featured than some leading rivals.

Sophos’s strength lies in ease of deployment and ongoing management through Sophos Central, which can be valuable for teams without dedicated security engineers.

So…

Palo Alto Networks provides a more feature-rich SASE suite with strong integration across cloud and network security, while Sophos gives a simpler set of SASE-aligned management that can be easier to manage but may not cover all enterprise use cases.

Cost and Total Cost of Ownership

Cost is a big determinant for African enterprises with tight IT budgets.

Palo Alto Networks

Palo Alto products are typically higher priced. Licensing depends on throughput, feature sets and number of users. Support and subscription services add to long-term spend.

For enterprises with complex needs, the higher cost is usually justified by deep inspection and advanced analytics.

However, smaller organisations may find the licensing tiers and hardware requirements challenging to budget for.

Sophos

Sophos licences are bundled more broadly, with firewall, endpoint and some network protection included in single packages. This bundling can make budgeting more predictable.

Sophos is generally seen as more cost-friendly for small and mid-sized businesses, though total costs still depend on the scale of deployment and feature requirements.

In user comparisons, Sophos is described as offering a good return on investment for lean teams, while Palo Alto’s suite is positioned at the higher end of the market.

Deployment and Ongoing Management

Palo Alto Networks

Palo Alto firewalls provide extensive configuration options but can require specialist knowledge to deploy and tune correctly. For small teams without senior security engineers, this complexity can be a barrier.

Training and certification are widely available, but they add to total implementation time and cost.

Sophos

Sophos prioritises a centralised, cloud-managed console and is generally easier to deploy. Most basic policies can be enabled quickly, and integrated endpoint support simplifies configurations.

Sophos’s management interface is friendlier for smaller teams, though advanced customisation options may be more limited.

Support Ecosystem and Regional Presence

Local support and partner networks can greatly influence operational success.

Palo Alto has a global partner ecosystem, but certified partners in Africa are often focused on larger enterprises.

Sophos also has a widespread partner network and is frequently chosen by regional managed service providers because of its easier onboarding and training.

For African organisations without in-house expertise, the availability of certified resellers and support partners able to assist with deployment and maintenance is a key factor.

Palo Alto Networks is a strong choice for organisations with adequate security staff, larger networks and complex compliance requirements. Its threat prevention capabilities, SASE maturity and integration across cloud and network environments offer broad protection for sophisticated threats.

Sophos suits smaller enterprises and lean IT teams. It provides effective threat prevention, straightforward deployment and bundled features that offer predictable cost and management simplicity.

There is no one-size-fits-all answer. For tight budgets and limited staff, Sophos provides the best balance of security depth and operational ease.

For larger enterprises or those facing persistent advanced threats, Palo Alto’s richer feature set may justify the higher cost.

The post Palo Alto Networks vs Sophos: Best Cybersecurity Stack for Resource-Constrained Enterprises appeared first on Tech | Business | Economy.

The programme targets hospitals, schools, non-profits, helplines, media organisations and other institutions that provide essential services but lack the resources to defend against growing cyber threats. 

The initiative will begin in Nigeria and Kenya, before launching in Ghana and South Africa later this year, covering 200 organisations in its first phase.

Speaking at the launch, the Executive Director of Cybersafe Foundation, Confidence Staveley, said the project was designed to close the gap between awareness of cyber risks and real action.

“What happens is that the conversation drops off where it gets to the point of taking action,” she said. “One of the major reasons we’ve seen with that is not just the lack of will, it’s also the lack of financial budgets to cover the cost.”

She explained that Resilio Africa will provide more than 10,000 hours of cybersecurity consulting at no cost to participating institutions, support she said would normally cost over one million dollars.

“That is all being provided by the best of experts in those four countries for free, and that’s what Google.org has helped us offset as a load,” she said.

Staveley stated that the foundation remains a non-profit focused on supporting vulnerable organisations and communities across Africa, adding that the initiative is intended to strengthen digital trust and protect services people rely on every day.

During her welcome address, she pointed to growing cyber activity across sub-Saharan Africa, citing data that showed over 95 million malware-based attacks in the first half of 2025, with spyware, password-stealing malware and backdoor tools among the most common threats.

Staveley said many community institutions operate with outdated systems, limited staff and little or no cybersecurity budget, leaving them exposed. “Attacks are not a matter of if, it is when,” she said.

The keynote address, delivered by Anna Collard, senior vice president for Content Strategy at KnowBe4 Africa, described cyber resilience as a people-centred issue rather than a purely technical one.

“When we think about resilience or cyber resilience, we often think about technology and firewalls and maybe viruses, but actually it’s about people,” Collard said. “We’re doing this to protect people and to ensure we deliver critical services to our people.”

She warned that community institutions such as hospitals and schools are attractive targets because they usually lack the budgets and skills of large financial institutions, but the impact of attacks on them can be severe.

Collard called for cybersecurity to be treated as a shared responsibility and a common good, comparable to public health.

“You can’t just expect one institution to solve those problems by itself,” she said. “We need to ensure that everyone gets up to a certain level of baseline protection.”

Google.org’s support for the initiative was outlined by Haviva Kohl, senior programme manager for Europe, the Middle East and Africa.

“Resilio Africa isn’t just another training workshop,” Kohl said. “It is a holistic resilience programme designed specifically for organisations that lack the resources to sustain a complex security programme.”

She elaborated that Africa recorded a 23% increase in ransomware attacks in 2023, with public and non-profit institutions among the most affected. Many of these organisations, she said, operate with zero security budget and outdated systems.

“This is why Google.org has committed a grant to support the launch of Resilio Africa,” she said.

Introducing the programme in detail, Cybersafe Foundation Programmes Lead, Success Tawo, said the initiative is built to meet institutions “where they are” and not impose one-size-fits-all solutions.

“Resilio Africa is a project dedicated to helping critical community institutions just like yourself,” she said. “The goal is not perfection. The goal is risk reduction, stronger systems and long-term resilience.”

Tawo said participating organisations will receive cybersecurity health checks, phishing simulations, staff training, incident response playbooks, real-time threat intelligence and access to a regional support network.

She stressed that the programme aims to help protect the records of at least two million people across the four participating countries and build a community of institutions that can share information and support each other.

“We are protecting 200 organisations, which means you have access to 199 other organisations that are similarly positioned like you,” she said.

A panel discussion followed, focusing on shared responsibility between governments, technology partners and community institutions.

Panellists included Gbolabo Awelewa, chief business officer at Essentry; Joylynn Kirui, head of Information Security at Prime Bank Africa; Dr Bright Mawudor, founder of CyberGuard Africa; Confidence Osein, founder of Internet Safe Kids Africa; and Juliet Ohahuru-Obiora, executive director of the Action Against Child Sexual Abuse Initiative.

Speakers agreed that cyber resilience must be driven from leadership but embedded across entire organisations, from management to frontline staff.

“It doesn’t sit with the experts and it doesn’t sit with any department,” Osein said. “It’s something that is shared across teams.”

The Resilio Africa programme will run for three years, with plans to scale to additional countries subject to funding. Cybersafe Foundation said the initiative is free for participating institutions but stressed that sustainability will depend on continued support.

Applications for eligible organisations are now open in Nigeria, Kenya, Ghana and South Africa.

The post Cybersafe Foundation Launches Resilio Africa to Help over 200 Institutions Tackle Cyber Attacks appeared first on Tech | Business | Economy.

This was revealed at the TeKnowledge Nigeria CxO Summit 2025, held on Thursday, 8 May at the Oriental Hotel, Victoria Island, Lagos.

At the core of this announcement is the launch of its AI-First Expert Technology Services in Nigeria, a unified service model designed to strengthen digital ecosystems, upskill local talent, and improve cybersecurity across the continent. 

Nigeria remains TeKnowledge’s largest global hub, delivering services to over 90 countries and playing host to its key Security Operations Centre.

“This is an exciting milestone—one that reflects how far TeKnowledge has come and the future we’re building together with our ecosystem,” said Olugbolahan Olusanya, Africa Territory director at TeKnowledge.

“Our new brand and AI-First Expert Technology Services model are grounded in what has always mattered most: people, trust, and progress.”

Olusanya’s emphasis on people and trust was reiterated by the firm’s CEO, who provided a chronological journey of TeKnowledge’s evolution, from launching operations in Europe and Latin America to entering the Nigerian market in 2018 with just 200 people. 

Today, the company employs 2,000 local experts and has trained more than 7,000 Nigerians, including 1,000 women, through strategic partnerships such as with Microsoft.

Aileen Allkins, president and CEO, TeKnowledge, recounted, “In 2018 we started this operation in Nigeria, initially with 200 people, and they were doing Azure technical support, supporting Microsoft global customers from here… nobody else was setting up an operation with the vision to become the size that we are today.” 

The Summit also addressed the escalating complexity of cyber threats and the urgent need for stronger defence mechanisms, especially as Africa adopts digital infrastructure at scale. 

Gabriel Portnoy, executive advisor for Cybersecurity at TeKnowledge, stated: “We built this to give you actionable insights without the hype. We aim to distinguish hype from reality, because everyone in the past three years has been misusing, abusing and overusing the word AI.”

Portnoy emphasised that organisations must prioritise solving business problems, not chasing trends. “If it’s the latter, then we don’t start by asking the question, ‘What can AI do for me?’ We start by asking the question, ‘What are my business problems?’”

Speaking further, he said, “If it’s smart, it’s vulnerable,” warning that interconnected systems such as smart buildings, IoT devices, and cloud networks, while valuable, expose businesses and nations to significant risks. “It’s not about their capability, it’s about our weaknesses,” he said. 

He stressed the need for deeper collaboration between organisations and governments, adding, “We are offering true cooperation, a true partnership.”

Cybersecurity was not discussed as an isolated issue. From the panel sessions, it was revealed that the threat landscape is evolving faster than most organisations can adapt to. 

“The attackers are collaborating… and if the threat actors are collaborating, we, as government, enterprise, public sector, private sector—we need to build this ecosystem to help each other.”

Speakers pushed for mindset changes at every level, from executives to IT teams to policymakers. The takeaway was that if Nigeria and Africa are to compete in the global digital economy, investments in talent, infrastructure, and cyber resilience must be scaled with speed.

TeKnowledge’s model stands out for its deliberate integration of skilling, infrastructure, and transformation services. With over 6,000 experts across 19 hubs worldwide and a workforce where 70% are platform-certified, the company isn’t just standing as a vendor, but a long-term transformation partner.

“Nigeria has always been a nation of transformation,” said Nidal Abou-Ltaif, chief revenue and transformation officer at TeKnowledge. “From the ancient trade networks of Kano to the fintech revolution and Nollywood’s global rise, progress here has always been driven by purpose. Today, Nigerian business leaders aren’t just exploring AI—they’re acting on it with urgency, focus, and vision.”

In prioritising local capacity, the company is going beyond enabling digital change, to providing Africa’s businesses, governments, and institutions with the talent and systems they need to stay resilient in the hostile cyber and economic environment.

“You cannot become an AI company before becoming a data company. And to become a data company, you must master data across all of its five stages,” Portnoy stated.

TeKnowledge says it is ready to help African organisations do just that.

The post TeKnowledge Unveils AI Strategy to Boost Enterprise Resilience, Create 6,000+ Jobs in Nigeria appeared first on Tech | Business | Economy.