In December 2024, Namibia’s state-owned telecommunications provider, Telecom Namibia, suffered a significant ransomware attack orchestrated by the cybercriminal group known as Hunters International. The breach resulted in the exfiltration and subsequent leak of approximately 626.3GB of sensitive customer data, including personal and financial information of high-ranking government officials and various clients.
The cyberattack was discovered on December 11, 2024, when Telecom Namibia identified unauthorized access to its systems. Upon refusing to pay the ransom demanded by the attackers, the stolen data was leaked onto the dark web and shared on social media platforms. The compromised information encompassed personal identification details, addresses, banking information, and other sensitive records.
Telecom Namibia’s CEO, Dr. Stanley Shanapinda, emphasized the company’s stance against negotiating with cybercriminals, stating, “We don’t negotiate with cyber terrorists. We know the sums they’re asking for are exorbitant and unaffordable, so there’s no reason to even consider discussing it. And even if you do pay a ransom, there’s no guarantee the information won’t still be leaked.”
National Response
The incident prompted a strong response from Namibian authorities. Outgoing President Nangolo Mbumba condemned the cyberattack, labeling it a matter of national security and calling for urgent action to address the breach.
The Communications Regulatory Authority of Namibia (CRAN) and its Namibia Cyber Security Incident Response Team (NAM-CSIRT) have been actively involved in investigating the breach and assisting Telecom Namibia in mitigating further risks.
Expert Commentary
Emmanuel Kotin, Executive Director and Security Analyst at the African Centre for Counter Terrorism, commented on the incident:
“The ransomware attack on Telecom Namibia underscores the escalating cyber threats facing critical infrastructure in Africa. It highlights the urgent need for robust cybersecurity frameworks, proactive threat detection, and international collaboration to safeguard national assets and citizen data.”
Recommendations and Preventive Measures
In light of the breach, Telecom Namibia has advised its customers to:
-
Change Passwords: Update passwords on all personal devices, including phones, laptops, Wi-Fi access points, and email accounts.
-
Monitor Financial Accounts: Regularly check bank statements and be vigilant for any unauthorized transactions.
-
Avoid Sharing Leaked Data: Refrain from circulating any of the leaked information, as doing so constitutes a criminal offense under Namibian law.
The company is collaborating with law enforcement agencies and cybersecurity experts to minimize further exposure and bring the perpetrators to justice.
