Hackers claim 500GB data theft in cyberattack on Namibia Airports Company

A cyberattack on Namibia Airports Company, the state-owned enterprise responsible for managing the country’s airports, has resulted in the alleged theft of approximately 500GB of data, with attackers threatening to release the information online.

The Namibia Cyber Security Incident Response Team, the national cybersecurity response unit operating under the Communications Regulatory Authority of Namibia, confirmed that unauthorized access to the company’s network occurred. The incident has been linked to the INC Ransomware Group, a cybercriminal organization known for targeting institutions worldwide.

The group claims to have exfiltrated a large volume of sensitive data, including financial records, human resources information, customer data, and contact details. The attackers have indicated plans to publish the data following a countdown period, although no material has been released so far.

The INC Ransomware Group employs double-extortion tactics, combining data theft with system encryption to increase pressure on victims to comply with ransom demands.

Namibia Airports Company stated that airport operations across all its facilities remain fully functional despite the breach. The organization acknowledged that the attackers accessed a significant volume of data and are allegedly threatening to release it on the dark web.

Spokesperson Dan Kamati said the company is continuing its investigation while reinforcing system security and monitoring measures. External cybersecurity experts have been engaged, and coordination is ongoing with relevant authorities and cybersecurity partners.

The company said it will provide further updates as more verified information becomes available.

The incident marks the second known cyberattack attributed to the INC Ransomware Group in Namibia, following a breach involving the Otjiwarongo Municipality last year.

Authorities have called on organizations to strengthen cybersecurity defenses, including implementing timely patch management, adopting multi-factor authentication, and maintaining effective incident response and recovery strategies. Increased cyber awareness and strong data protection practices have also been emphasized as critical measures to reduce exposure to similar threats.