Government Of Kenya Cyberattack Disrupts Several Ministries

Early Monday morning, several Kenyan government ministry websites were hit by a cyberattack that left the pages defaced with racist and white supremacist slogans. The incident disrupted access to key public sector platforms for several hours, causing alarm among national cybersecurity teams and government officials. The targeted sites included ministries such as Interior, Health, Education, Energy, Labour, and Water, all of which experienced temporary outages or displayed extremist messages like "We will rise again," "White power worldwide," and "14:88 Heil Hitler." The Ministry of Interior quickly confirmed the breach, attributing the attack to a group calling themselves "PCP@Kenya." Government cybersecurity teams sprung into action, activating incident response protocols and working with various stakeholders to contain the situation and restore normal access to the compromised websites. Although the websites were unavailable for some time, officials stressed that core government systems, sensitive financial data, and critical services remained untouched and unaffected by the cyberattack. Following the containment, authorities placed the affected systems under continuous monitoring to prevent any further disruptions. Citizens were urged to report any suspicious activity or relevant information to the National Kenya Computer Incident Response Team (KE-CIRT) to aid in the investigation. This attack has raised serious questions about the security of Kenya’s public-sector digital infrastructure and the vulnerability of government-facing platforms to coordinated cyber threats. In a related development, Somalia reported a cyber breach just a day before Kenya’s incident. Somali officials revealed that their Immigration and Citizenship Agency's e-Visa system was compromised, potentially leaking personal data of individuals who had entered the country. The leaked information is reported to include names, dates of birth, photos, marital status, email addresses, and home addresses. Somali authorities are currently conducting a thorough assessment to determine the scale of the breach and the methods used by attackers to penetrate their systems. The U.S. Embassy in Somalia acknowledged the breach and warned that up to 35,000 applicants, possibly including U.S. citizens, might have had their personal data exposed. Despite this, no official group has claimed responsibility for either the Kenyan or Somali cyberattacks. Investigators are exploring whether the timing and tactics point to a coordinated campaign or shared vulnerabilities being exploited between the two countries. While the Kenyan cyberattack was largely limited to public-facing websites and did not extend to critical backend systems, the incidents underscore the rising threat of cyber attacks in the East African region. Both Kenya and Somalia are now reinforcing their cybersecurity postures, with increased vigilance and collaboration among regional and international cyber defense teams. These attacks highlight the pressing need for more robust cyber defenses, proactive incident response strategies, and greater public awareness about cyber threats.