Criminal investigation strategies and management of new security threats, a case of cyber crimes in Kampala metropolitan area

Abstract

This study investigated criminal investigation strategies and management of new security threats, with particular focus on cyber crimes in Kampala Metropolitan Area. The research was guided by three specific objectives: to analyze the different forms and nature of criminality arising from cyber usage, to investigate contributing factors for new threats particularly cyber-crime, and to assess the effectiveness of current strategies in the management of cyber threats and criminal investigations. The study employed a mixed-methods research design, utilizing structured questionnaires, semi-structured interviews, focus group discussions, and document analysis. Data was collected from 170 survey respondents and 85 qualitative participants, including law enforcement officers, cyber-security professionals, judicial officers, private sector representatives, and cyber-crime victims. Quantitative data was analyzed using SPSS version 29.0, while qualitative data was analyzed using NVivo 14 software through systematic thematic analysis. The findings revealed that cybercrime in Kampala Metropolitan Area is dominated by financial crimes, particularly mobile money fraud accounting for 67.3% of all reported financial cybercrimes. Social engineering emerged as the primary attack vector in 76.5% of successful cybercrimes, with impersonation of authority figures (72.1%) and romantic relationship exploitation (58.8%) being the most prevalent tactics. The study identified mobile technologies as the primary vector in 83.8% of cybercrime cases, reflecting Uganda's mobile-first digital adoption pattern. Contributing factors to cybercrime included rapid digital transformation outpacing cybersecurity investment (Security Gap Index of 0.39 for mobile money services), strong positive correlation between youth unemployment and cybercrime incidence (r = +0.67, p < 0.001), educational system gaps in digital security awareness, legal framework deficiencies particularly in cross-border investigation powers (61.8% rating these as inadequate), and inter-agency coordination challenges. The assessment of management strategies revealed significant effectiveness limitations, with overall cyber-crime investigation success rates at 23.8% and mobile money fraud showing particularly poor performance at 10.2%. Technical capacity limitations emerged as the most critical barrier (82.4% rating it as having critical or significant impact), while average investigation timelines (14.7 months) significantly exceeded those for traditional crimes (6.2 months). The study concluded that cyber-crime in Uganda exhibits distinctive characteristics requiring context-specific analytical frameworks and management approaches. Three key recommendations emerged: development of a nationally specific cybercrime classification framework prioritizing mobile money fraud, implementation of an integrated national cyber-security strategy addressing contributing factors, and establishment of a dedicated National Cyber-crime Investigation Center with advanced capabilities and regional cooperation mechanisms. The research contributes to understanding cyber-crime dynamics in African metropolitan contexts and provides evidence-based recommendations for enhancing cybercrime investigation and management effectiveness in developing country environments.