After acknowledging reports of a data exfiltration attack on Telecom Namibia, one of the country’s telecommunications operators, the Communications Regulatory Authority of Namibia (Cran) has underscored the critical importance of robust cybersecurity measures to safeguard vital infrastructure and consumer data. 

Through the Namibia Cyber Security Incident Response Team (NAM-CSIRT), Cran promptly responded upon identifying the attack, and continues to support Telecom in mitigating the impact.

NAM-CSIRT, currently housed at Cran, serves as Namibia’s national focal point for coordinating cybersecurity incidents. Established by the government, its mandate includes managing cyber events, and contributing to the security and stability of Critical Infrastructure (CI) and Critical Information Infrastructure (CII).

The NAM-CSIRT detected the data exfiltration incident on 11 December 2024 through credible threat intelligence sources, revealing that the Hunters International ransomware group had allegedly exfiltrated data from Telecom. 

NAM-CSIRT swiftly informed the operator’s key contacts, and initiated investigations to assess the extent of the breach.

Cran chief executive officer and head of NAM-CSIRT Emilia Nghikembua, remarked: “We take cybersecurity very seriously, particularly incidents that affect CI and CII, and consumer data. NAM-CSIRT has been working diligently with the operator to ensure all necessary measures are taken to contain and address the information breach. This incident highlights the need for vigilance and collaboration to mitigate the ever-evolving cyber threats facing our nation.

In fulfilling its mandate, NAM-CSIRT has directly engaged the affected operator by sharing findings and facilitating discussions regarding the incident. This process encompasses key phases: preparation, identification, containment, eradication, recovery and lessons learned. NAM-CSIRT remains committed to supporting the operator in addressing the breach, and strengthening national cybersecurity capacity.”

While Namibia does not yet have a dedicated cybercrime and data- protection law, Cran, through the NAM-CSIRT, ensures compliance with international best-practice. The NAM-CSIRT encourages operators and all owners of CI and CII to adopt internationally0recognised best- practices, including encryption and regular security assessments, to enhance cybersecurity resilience.

Nghikembua emphasised: “It is crucial for all stakeholders to invest in proactive cybersecurity measures. Protecting our national critical infrastructure requires collective action, strategic planning and a commitment to compliance with global standards.  Stakeholders are further urged to swiftly report any incidents to NAM-CSIRT to ensure timeous and effective incident-handling and support “.

To reduce the risk of future attacks, NAM-CSIRT advises organisations to implement proactive measures such as multifactor authentication, regular vulnerability scans, timely software updates and robust network segmentation. Securing access controls and deploying advanced detection and response tools are also essential for early threat identification.

Cran said this latest incident highlights the increasing cyber risks confronting CI and CII, and the need for coordinated efforts to safeguard national assets. The regulator also noted that, through NAM-CSIRT, it remains dedicated to responding to cybersecurity incidents, and assisting stakeholders in mitigating their impact.