The Communications Regulatory Authority of Namibia (CRAN) has said it acknowledges reports of a data exfiltration attack on one of Namibia’s telecommunication operators, underscoring the critical importance of robust cybersecurity measures to safeguard critical infrastructure and information infrastructure and consumer data. Through the Namibia Cyber Security Incident Response Team (NAM-CSIRT), CRAN promptly responded upon identifying the attack and continues to support the affected operator in mitigating its impact.
NAM-CSIRT, currently housed at CRAN, serves as Namibia’s national focal point for coordinating cybersecurity incidents. Established by the Namibian Government, its mandate includes managing cyber events and contributing to the security and stability of Critical Infrastructure (CI) and Critical Information Infrastructure (CII).
The NAM-CSIRT detected the data exfiltration incident on 11 December 2024, through credible threat intelligence sources, revealing that the Hunters International ransomware group had allegedly exfiltrated data from the operator. NAM-CSIRT swiftly informed the operator’s key contacts and initiated investigations to assess the extent of the breach.
Emilia Nghikembua, CRAN Chief Executive Officer and Head of NAM-CSIRT, remarked that, “We take cybersecurity very seriously, particularly incidents that affect CI and CII and consumer data. NAM-CSIRT has been working diligently with the operator to ensure that all necessary measures are taken to contain and address the information breach. This incident highlights the need for vigilance and collaboration to mitigate the ever-evolving cyber threats facing our nation.”
In fulfilling its mandate, NAM-CSIRT has directly engaged the affected operator by sharing findings and facilitating discussions regarding the incident. This process encompasses key phases: preparation, identification, containment, eradication, recovery, and lessons learned. NAM-CSIRT remains committed to supporting the operator in addressing the breach and strengthening national cybersecurity capacity.
While Namibia does not yet have a dedicated Cybercrime and Data Protection Law, CRAN, through the NAM-CSIRT ensures compliance with the international best practice. The NAM-CSIRT encourages operators and all owners of CI and CII to adopt internationally recognised best practices, including encryption, and regular security assessments, to enhance cybersecurity resilience
Nghikembua further emphasised that, “It is crucial for all stakeholders to invest in proactive cybersecurity measures. Protecting our national critical infrastructure requires collective action, strategic planning, and a commitment to compliance with global standards. Stakeholders are further urged to swiftly report any incidents to NAM-CSIRT to ensure timeous and effective incident handling and support “.
To reduce the risk of future attacks, NAM-CSIRT advises organisations to implement proactive measures such as multifactor authentication, regular vulnerability scans, timely software updates, and robust network segmentation. Securing access controls and deploying advanced detection and response tools are also essential for early threat identification.
This incident highlights the increasing cyber risks confronting CI and CII and the need for coordinated efforts to safeguard national assets. CRAN, through NAM-CSIRT, remains dedicated to responding to cybersecurity incidents and assisting stakeholders in mitigating their impact.