Kenya: Computer Misuse and Cybercrimes (Amendment) Bill, 2024 including cybersecurity regulation passed first reading

On 25 November 2024, the Computer Misuse and Cybercrimes (Amendment) Bill, 2024 passed its first reading. The Bill expands the definition of “access” to include entry through programs or devices and introduces new definitions for terms such as “identity theft” and “virtual account.” It empowers the National Computer and Cybercrimes Coordination Committee (NC4) to issue directives to render websites or applications inaccessible if they promote illegal activities, child pornography, terrorism, or extreme religious and cultic practices. The Bill also broadens the scope of cyber harassment to include conduct likely to cause suicide and expands the definition of phishing to include fraudulent calls. Additionally, it introduces a new offence for unauthorised SIM card swaps, addressing identity theft and fraud.