Kenya’s fast-evolving cybercrime landscape has been thrust into the spotlight following the arrest of 26-year-old Seth Mwabe, a former Information Technology student accused of orchestrating a Sh11.4 million digital heist against a leading betting firm.
Mwabe, who dropped out of Meru University in his second year, was arrested last week at his Tatu City apartment by the Directorate of Criminal Investigations (DCI) Banking Fraud Unit. According to detectives, the suspect breached the betting company’s systems in July 2025, siphoning millions before the activity was flagged.
A Promising Cybersecurity Enthusiast Turned Suspect
Little was known about Mwabe before his arrest. However, his online footprint portrays him as a passionate cybersecurity enthusiast. On his LinkedIn profile, he described himself as “an information security enthusiast driven by passion” and even claimed to have founded a cybersecurity training community at Meru University.
Mwabe showcased interests in mobile application security, private API reversing, IoT platforms, and network security. His personal blog, last updated in 2018, featured tutorials on hacking vulnerable office printers using default passwords—a hint of his deep technical curiosity.
In 2019, Mwabe even won Sh50,000 in a cybersecurity challenge organized by a major Kenyan bank, briefly earning recognition in Kenya’s budding infosec community.
Inside His High-Tech Cyber Lab
When detectives stormed his Tatu City apartment, they found what resembled a miniature cyber lab. Items recovered included:
- A money-counting machine
- A safe
- Multiple smartphones
- Several high-end computers and digital gadgets allegedly used in the heist
Mwabe reportedly resisted arrest, forcing officers to break down his door. When cornered, he maintained his innocence, insisting he was an independent cybersecurity consultant who offered services to various clients.
“I am an independent consultant; I get contracted by different entities. This is what I do,” Mwabe allegedly told officers.
DCI Confirms Multi-Million Heist
Abraham Mugambi, the Regional Criminal Investigations Officer for Central Region, confirmed the magnitude of the operation.
“This year in July, a report was made that a payment service provider had lost Sh11.4 million through fraudulent means. Investigations commenced, and experts established that the suspect bypassed the company’s security systems,” Mugambi said.
The DCI believes Mwabe could be linked to other cyber fraud schemes, with investigations still ongoing.
From Defender to Perpetrator
Ironically, Mwabe once positioned himself as a defender against cyber threats. His past writings even warned that “every single asset is a potential target for the ever-growing threat landscape.”
Now, investigators say he may have become the very threat he once warned about.