Namibia's national cybersecurity incident response team under the Communications Regulatory Authority, leading breach investigations and regional security training.
“The guidelines, developed by the Namibia Cyber Security Incident Response Team (NAM-CSIRT) under the Communications Regulatory Authority of Namibia (CRAN), were launched in Ondangwa under the theme "Building a Cyber Resilience Ecosystem."”
NAM-CSIRTconfirmed thatat least part of stolen data has been released online
Source
“Meanwhile, the Namibia Cyber Security Incident Response Team (NAM-CSIRT), operating under the Communications Regulatory Authority of Namibia (Cran), also confirmed that at least part of the stolen data has been released online.”
Namibia Cyber Security Incident Response Team (NAM-CSIRT)has confirmedsome data stolen during cyberattack on NAC has been published online
Source
“THE Namibia Cyber Security Incident Response Team (NAM-CSIRT) has confirmed that some of the data stolen during the recent cyberattack on the Namibia Airports Company (NAC) has been published online, as investigations continue to determine the full extent of the breach and whether sensitive information has been compromised.”
Namibia Cyber Security Incident Response Team (Nam-CSIRT)confirmed thatleaked data include financial records, internal reports and engineering documents
Source
“The Namibia Cyber Security Incident Response Team (Nam-CSIRT) – housed under Cran – has confirmed that data leaked include financial records, internal reports and engineering and project documents.”
Namibia Cyber Security Incident Response Team (NAM-CSIRT)said INC Ransomware Group usesdouble-extortion tactics involving data theft and system encryption
Source
“The Namibia Cyber Security Incident Response Team (NAM-CSIRT) said that the INC Ransomware Group uses "double-extortion" tactics, which involve both stealing data and encrypting systems to pressure victims into compliance.”
Namibia Cyber Security Incident Response Teamconfirmedunauthorised access to NAC's network systems
Source
“In a statement released on 19 March 2026, the Namibia Cyber Security Incident Response Team (NAM-CSIRT), operating under the Communications Regulatory Authority of Namibia (Cran), confirmed unauthorised access to NAC's network systems, marking one of the most serious cyber incidents in Namibia's recent history.”
Namibia Cyber Security Incident Response Teamconfirmeda cyberattack on Namibia Airports Company involved unauthorised network access
Source
“THE Namibia Cyber Security Incident Response Team (NAM-CSIRT) has confirmed that a cyberattack on the Namibia Airports Company (NAC) involved unauthorised access to its network, with hackers claiming to have stolen approximately 500GB of data.”
Namibia Cyber Security Incident Response Teamsaid in its latest quarterly report thatphishing and fraud incidents remain a significant concern
Source
“The Namibia Cyber Security Incident Response Team (NAM-CSIRT), in its latest quarterly report, said that while overall cyber vulnerabilities and events showed a decline towards the end of 2025, incidents involving phishing and fraud remain a significant concern.”
NAM-CSIRTissuedpublic advisory confirming the breach on 16 March
Source
“The situation escalated on 16 March when the Namibia Cyber Security Incident Response Team (NAM-CSIRT), operating under the Communications Regulatory Authority of Namibia (Cran), issued a public advisory confirming the breach and urging organisations nationwide to treat it as a wake-up call.”
NAM-CSIRTreleasedits fourth quarterly cybersecurity report for 2025
Source
“The Namibia Cyber Security Incident Response Team (NAM-CSIRT), housed at the Communications Regulatory Authority of Namibia (CRAN), has released its fourth quarterly cybersecurity report for 2025, providing insights into the evolving cyber threat landscape and reinforcing the country's commitment to protecting critical information infrastructure.”
Data breached in a cyberattack on Namibia Airports Company has been released on the dark web by the INC Ransomware Group, including airport permits, parking databases, engineering files, and financial records. Authorities are investigating whether sensitive or personally identifiable information is among the leaked files and urge organisations to strengthen cybersecurity measures.
NAM-CSIRT has confirmed that data stolen in a cyberattack on Namibia Airports Company has been published online, with preliminary assessments indicating the leaked data may include airport permit records, parking management information, engineering documentation, financial records, and internal reports. The attack, detected on 6 March 2026, involved approximately 500GB of data and is linked to the INC Ransomware Group, marking the second known attack by this group in Namibia.
The Communication Regulatory Authority of Namibia (Cran) has called for responsible handling of information related to the Namibia Airports Company data leak, warning that circulation of unverified data may place individuals and organisations at further risk. The NAC was attacked by the Inc Ransomware Group on 19 March; leaked data includes financial records, internal reports, and engineering documents, though NAC says operations remain unaffected.
Namibia Airports Company has confirmed that data stolen in a March 2026 cybersecurity breach by the INC Ransomware Group has been released on the dark web. The leaked data may include airport permit systems, parking databases, engineering documents, and financial records; NAC is verifying the breach extent while airport operations remain unaffected.
The Namibia Airports Company suffered a ransomware attack by the INC Ransomware Group, with hackers claiming to have stolen 500 gigabytes of sensitive data including financial records, HR files, and customer information. The attackers have threatened to release the data after a countdown timer expires unless demands are met, making NAC the second confirmed Namibian victim of the group after an Otjiwarongo Municipality breach in 2025.
The Namibia Cyber Security Incident Response Team confirmed that hackers linked to the INC Ransomware Group unauthorisedly accessed Namibia Airports Company's network and stole approximately 500GB of data, including financial records, HR data, and customer information. The group uses "double-extortion" tactics involving data theft and system encryption, and has threatened to release the stolen data after a countdown period.
The Communication Regulatory Authority of Namibia has confirmed that the INC Ransom cybercriminal group was responsible for last week's attack on Namibia Airports Company, claiming to have exfiltrated approximately 500GB of data including financial records, HR information, and customer details. This is the second Namibian entity targeted by the group after an attack on Otjiwarongo municipality last year.
The Bank of Namibia has warned the public against a fraudulent investment scheme using a fake website impersonating a media outlet and falsely claiming endorsement by Deputy Governor Leonie Dunn. The central bank stressed that neither it nor the Deputy Governor endorses any investments and urged the public to verify information through official channels and avoid clicking suspicious links or sharing personal information.
The Namibia Airports Company (NAC) disclosed a cybersecurity breach detected on 6 March involving unauthorised network access, though airport services have been restored and there is no confirmed data theft. The incident prompted the Namibia Cyber Security Incident Response Team to issue a public advisory and call on all organisations to strengthen cyber resilience through enhanced security measures.
Namibia's cybersecurity team detected 535,204 cyber vulnerabilities during October–December 2025, a 4.28% decrease from the previous quarter, though phishing scams and ransomware threats remain persistent concerns. The team has identified emerging ransomware groups and emphasises the need for continued vigilance in protecting critical infrastructure.
Following a cybersecurity incident at Namibia Airports Company, the Communication Regulatory Authority of Namibia has urged organisations to tighten security by implementing robust controls, enforcing governance policies, activating multifactor authentication, and conducting continuous cybersecurity awareness training.
Namibia Airports Company detected a cybersecurity incident on 6 March 2026 involving unauthorised access to network infrastructure and administrative accounts. Services have been restored with limited operational impact, and there is no evidence of data exfiltration, though investigations continue; NAM-CSIRT and NAC are working together to enhance security resilience.
An executive from the Communications Regulatory Authority of Namibia argues that continuous monitoring of an organisation's external attack surface—all internet-facing digital assets and entry points—is essential to modern security. The article outlines key components to monitor including public-facing infrastructure, cloud assets, third-party connections, digital certificates, and exposed credentials.
The Namibia Cyber Security Incident Response Team, housed under Cran, hosted a Domain Name System Resilience Training from 17 to 20 February 2026 in Windhoek to strengthen DNS security awareness and response capabilities across the region, addressing vulnerabilities that pose significant threats to internet integrity including botnets, denial-of-service attacks, and phishing.