Multiple Kenyan Government Sites Temporarily Offline Following Cybersecurity Breach

Kenya experienced a significant cybersecurity incident on November 17, 2025, when multiple government websites were temporarily taken offline. The Ministry of Interior and National Administration confirmed that the attack affected key government platforms, including the Ministries of Interior, Health, Education, Energy, Labour, and Water, as well as State House, the Directorate of Criminal Investigations (DCI), and the Immigration Department. External reports indicated that some of these sites were defaced with white supremacist messages and symbols, including slogans such as “We will rise again,” “White power worldwide,” and “14:88 Heil Hitler.” Preliminary investigations suggest that the group behind the attack identifies itself as ‘PCP@Kenya’.

The government responded immediately by activating its incident response and recovery procedures, working with relevant stakeholders to mitigate the impact and restore access. The situation has since been contained, and all systems remain under continuous monitoring. Authorities are focused on strengthening layered cybersecurity defenses, improving readiness, and ensuring that any future attempts are detected early, contained quickly, and neutralized decisively to minimize their impact.

Dr. Raymond Omollo, Principal Secretary for Internal Security and National Administration and Chairman of the National Computer and Cybercrimes Coordination Committee (NC4), emphasized the government’s commitment to the national digital transformation agenda and the security of the country’s digital infrastructure. Measures to enhance cyber resilience include strengthened capabilities, better coordination, and sustained collaboration with private sector partners and other stakeholders.

The incident constitutes a violation of Kenyan law and relevant international conventions, including the Computer Misuse and Cybercrimes Act, the Kenya Information and Communications Act, and the Data Protection Act. Dr. Omollo warned that individuals found responsible would face the full force of the law. The public, as well as public and private institutions, were urged to remain vigilant, take necessary precautions, and report any suspicious cyber activity through official channels.

This incident underscores the growing importance of cybersecurity in Kenya as government services continue to digitalize, highlighting the need for robust defenses and public awareness in the face of increasingly sophisticated cyber threats.