Ransomware Attack on Namibia Airports Company Exposes 500GB of Data

On March 6, 2026, the Namibia Airports Company experienced a ransomware attack attributed to the INC Ransomware Group. The attack was confirmed by the Namibia Cyber Security Incident Response Team on March 19, revealing that approximately 500GB of sensitive data, including financial records and customer information, was exfiltrated. This incident marked the second attack by the group on a Namibian entity, following a previous incident at the Otjiwarongo municipality. The compromised data was later found dumped on the dark web. Despite the breach, airport operations continued without visible disruption, highlighting the challenges of recognizing cyber threats. Namibia's digital economy is rapidly expanding, with increasing reliance on online services, yet the country's cybersecurity measures remain inadequate. The ITU's 2024 Global Cybersecurity Index rated Namibia's cyber readiness at 37.93 out of 100. The Bank of Namibia reported significant increases in banking fraud losses, emphasizing the urgent need for improved cybersecurity infrastructure.

Key Points: • The Namibia Airports Company suffered a ransomware attack, exposing 500GB of data. • The INC Ransomware Group has targeted multiple Namibian organizations, indicating a growing threat. • Namibia's cybersecurity readiness is critically low, with a score of 37.93 out of 100.