Hackers have claimed to have stolen an astounding 500 gigabytes of sensitive data that has put the country’s aviation infrastructure on high alert. This is as the Namibia Airports Company is facing an unprecedented cybersecurity threat after suffering a recent ransomware attack.
In a statement released on 19 March 2026, the Namibia Cyber Security Incident Response Team (NAM-CSIRT), operating under the Communications Regulatory Authority of Namibia (Cran), confirmed unauthorised access to NAC’s network systems, marking one of the most serious cyber incidents in Namibia’s recent history.
Apparently, the notorious INC Ransomware Group, a highly active international hacking syndicate known for crippling institutions and extorting millions, is behind the attack.
“The NAM-CSIRT reiterates its earlier advisory on the INC ransomware group that was shared with all constituents. The advisory is available to download from the NAM-CSIRT official website. Organisations are encouraged to prioritise the implementation of best practice security controls, patch management, multifactor authentication on VPN, basic cyber hygiene, awareness training, development of incident response plans, as well as disaster recovery and business continuity plans,” stated Mufaro Nesongano, Cran’s executive for communication and consumer relations.
According to NAM-CSIRT, the group claims to have exfiltrated financial records, human resources files, customer data and confidential contact databases.
While the stolen data has not yet been published, the attackers have issued a chilling warning that they will release the data after the expiration of a countdown timer, a tactic designed to force payment or concessions.
Cybersecurity experts warn this “double-extortion” model, where attackers both steal and threaten to leak data is among the most damaging forms of global cybercrime.
NAC becomes the second confirmed Namibian victim of the same group, following a 2025 breach at the Otjiwarongo Municipality. NAC spokesperson, Dan Kamati on Friday stated that investigations are ongoing, and crucially, airport operations across NAC-managed facilities remain functional.
“As a precautionary measure, NAC continues to strengthen system security and monitoring, engage leading cybersecurity experts, engage relevant authorities and cybersecurity partners in addressing this matter,” the airports’ company stated.
NAC added that it takes this incident seriously and reiterated its commitment to transparency and stated it will provide further updates as, and when credible evidence emerges.
Meanwhile, across Africa, cyberattacks are surging and Interpol reports that cybercrime now accounts for a significant share of all reported crime on the continent, with ransomware attacks increasing sharply in the past three years.
According to industry estimates, ransomware damages are projected to exceed US$10 trillion annually, making it one of the most lucrative criminal enterprises in the world.
The targeting of an airport operator such as the NAC raises serious concerns about national security and operational safety. While authorities have not confirmed disruptions to airport operations, breaches involving aviation infrastructure can have far-reaching consequences, from data exposure to potential system interference.
The International Civil Aviation Organisation (ICAO) has warned that aviation systems are increasingly attractive targets, due to their complexity and the high value of passenger and logistical data.
For now, Namibian authorities say they are actively monitoring the situation and have urged all organisations to tighten cybersecurity measures. This includes implementing multi-factor authentication, maintaining up-to-date system patches, strengthening incident response plans, and training staff in cyber awareness.
The NAM-CSIRT has also reissued its advisory on the INC Ransomware Group, warning that more attacks could follow if vulnerabilities remain unaddressed.