Several key Kenyan government websites were hacked on Monday morning, leaving citizens unable to access vital online services. Ministries and state agencies including Health, Education, Labour, Environment, ICT, Tourism, State House, and Interior were all affected in what is suspected to be a coordinated cyberattack.
Government Websites Disrupted
The attack resulted in the defacement of multiple government websites, replacing their normal content with extremist messages. Visitors were greeted with slogans such as “Access denied by PCP”, “We will rise again”, “White power worldwide”, and “14:88 Heil Hitler”. This disturbing development interrupted the usual flow of government services and information, frustrating many users who rely on these sites for important updates.
Key state departments such as the Immigration Department, Directorate of Public-Private Partnerships, Directorate of Criminal Investigations (DCI), and State House were all rendered inaccessible. Even critical services like the Hustler Fund and the Government Press were affected, contributing to widespread frustration. Notably, Nairobi County’s websites also faced disruptions.
Impact on Online Services
At the time of writing, several other major government portals, including eCitizen, NTSA, the Judiciary, KNEC, and the National Police Service, remained functional. However, those relying on the affected websites were unable to access key services like visa applications, public records, and government press releases.
The government has yet to comment officially on the disruptions, and no group has claimed responsibility for the cyberattack. This breach comes a year after a similar attack in 2023, when a Sudanese hacker group known as Sudan Anonymous claimed responsibility for bringing down Kenyan government websites, including eCitizen.
Previous Attack and Potential Motives
Sudan Anonymous, in 2023, stated that the attack was retaliatory, claiming that Kenya had interfered in Sudan’s internal affairs. However, the group did not provide any evidence to back up these claims. This earlier attack raised concerns over the vulnerability of Kenya’s cyber infrastructure and the potential for foreign actors to target key government systems.
Continued Cybersecurity Challenges
While government websites such as Defence and Treasury were reportedly spared this time, the widespread nature of this breach emphasizes the urgent need for stronger cybersecurity measures to protect critical national infrastructure. The attack serves as a stark reminder of the growing cyber risks faced by nations worldwide, especially in the context of volatile geopolitical relations.
With no official confirmation of the attackers’ identity and no claims of responsibility, the government’s response and future preparedness remain unclear. Experts are calling for an investigation into the breach and stronger cybersecurity protocols to prevent future attacks.