A major cyberattack targeting Kenya’s Business Registration Services (BRS) has resulted in a significant data breach, exposing sensitive information about private companies. The attack, believed to have occurred on the night of January 31st, has prompted emergency meetings and a scramble to contain the damage.
A source, speaking to the Nation anonymously, stated, “We still can’t say who is behind the breach, but it looks like the intent is sabotage because the nature of the breach looks like there was an internal actor.”
BRS Director-General Kenneth Gathuma was unavailable for comment due to ongoing meetings addressing the crisis. The stolen data is reportedly being sold on the dark web.
The Business Registration Services holds extensive data on registered companies, including details on owners, directors, and beneficial owners. This information, previously accessible only for a fee, is now freely available due to the cyber attack.
The public database providing access to this information is currently offline. This raises questions about whether the attackers were responsible for disabling it. The BRS also manages records of financially distressed companies, raising concerns about the potential compromise of this sensitive data as well.
Kenya’s data protection laws mandate that the affected organization assess the breach and notify those impacted. This BRS cyber attack is the first major attack on a government entity in over a year, following a similar incident at Kenya Airways in late 2023.
Authorities have reportedly ruled out ransomware as a motive, as no ransom demands have been made. The Business Registration Services cyber attack highlights the increasing vulnerability of government agencies to sophisticated cyberattacks.
The scale of the data in breach and its potential consequences remain a significant concern. The ongoing investigation aims to identify the perpetrators and fully assess the extent of the damage caused by this Business Registration Services cyber attack.
