Telecom Namibia was targeted in a massive cyberattack on December 11, 2024, which led to the leak of over 400,000 customer files. The attack, carried out by the notorious ransomware group Hunters International, resulted in the exfiltration of 626.3GB of data, including sensitive customer information such as personal identification details, addresses, and banking information. The attackers initially demanded a ransom, threatening to release the stolen data unless their demands were met. However, when the ransom deadline passed, the cybercriminals followed through on their threats, and the stolen data began circulating on social media.
Telecom Namibia’s CEO, Stanley Shanapinda, reassured the public that the company was working closely with local and international cybersecurity experts to assess the scope of the breach and to mitigate its impact. Despite having strong incident monitoring and detection systems in place, the attack was still successful. Shanapinda expressed the company’s commitment to strengthening its cybersecurity measures and promised to release a detailed statement about the attack in the near future.
The Communications Regulatory Authority of Namibia (Cran) has expressed deep concern over the incident, highlighting the critical importance of cybersecurity within the country. Cran’s CEO, Emilia Nghikembua, noted that Namibia currently lacks a dedicated cybercrime and data protection law. In response to the attack, the Namibia Cyber Security Incident Response Team (NAM-CSIRT) immediately stepped in to assist Telecom Namibia in mitigating the consequences. Nghikembua emphasized the need for adopting global cybersecurity standards, including encryption and regular security assessments, to protect critical infrastructure.
This cyberattack serves as a wake-up call for the importance of robust cybersecurity measures, particularly in nations without dedicated cybersecurity laws. The leaked personal data circulating on social media increases the risk of phishing attacks, where cybercriminals can exploit the stolen information to target individuals further. As the investigation into the attack continues, experts urge organizations to strengthen their security protocols and remain vigilant against similar threats in the future.
Reference:
