Unauthorized Data Access and Extortion Demanded at Namibian Municipality
In a concerning development, the Otjiwarongo Municipality in Namibia has become the latest victim of a ransomware attack. The incident, confirmed by the Namibia Cyber Security Incident Response Team (NAM-CSIRT) on July 16, 2025, was initially detected on July 14, 2025.
The attack, perpetrated by the ransomware group known as INC Ransom (incransom), appears to have disrupted municipal operations. A ransom demand has been issued, indicating a broader and growing cybersecurity threat targeting public infrastructure in Namibia.
The Otjiwarongo Municipality, known for its commitment to socio-economic development and stability, found its systems compromised. While specific details of the data exfiltration are not yet fully disclosed, internal administrative data appears to have been affected. As of now, no reports have confirmed the leak of personally identifiable information.
NAM-CSIRT's involvement includes confirming the breach and presumably coordinating the incident response, though detailed remediation steps have not been publicly outlined. The situation underscores the increasing risk ransomware attacks pose to critical public service entities in the region.
The investigation into the extent of data exposure is currently underway. Mrs. Emilia Nghikembua, Chief Executive Officer, CRAN and Head, NAM-CSIRT, has reaffirmed the commitment to transparency and keeping stakeholders informed.
This incident serves as a reminder of the evolving cybersecurity threat landscape targeting public infrastructure. Stakeholders are expected to receive further updates as the investigation progresses. Containment measures, including data mapping and isolation of affected systems, are currently being implemented.
References: [1] TechCentral - Namibia's Otjiwarongo Municipality hit by ransomware attack [2] ITWeb Africa - Namibia's Otjiwarongo Municipality hit by ransomware attack [4] Computer Weekly - Namibia's Otjiwarongo Municipality hit by ransomware attack: No PII leaked as of now [5] Cybersecurity Insiders - Otjiwarongo Municipality ransomware attack: A growing threat to Namibia's public infrastructure
- The ransomware attack on Otjiwarongo Municipality in Namibia highlights a growing cybersecurity threat to data-and-cloud-computing systems in the region's general-news.
- The incident response team, NAM-CSIRT, is working to contain the virus and has begun implementing technology-based containment measures such as data mapping and isolation of affected systems.
- Despite the disruption of municipal operations, no reports have confirmed the leak of personally identifiable information, although specific details of the data exfiltration are not yet fully disclosed.
- The crime-and-justice implications of this attack, perpetrated by the INC Ransom group, highlight the need for enhanced investments in cybersecurity infrastructure to protect against such threats.
