In a significant cybersecurity incident, Kenya’s National Social Security Fund (NSSF) experienced a ransomware attack on May 20, 2025, potentially compromising the savings of over 1.2 million members. The hacking group known as “Devman” has claimed responsibility, alleging the theft of 2.5 terabytes of sensitive data and demanding a ransom of KSh 580 million ($4.5 million) to prevent its release on the dark web .
The attackers issued a 24-hour ultimatum, threatening to expose the data if their demands were not met. A ransom note shared by cybersecurity firm HackManac indicated that all NSSF devices had been locked, with the stolen data poised for public disclosure .
NSSF’s Response and Public Reassurance
In response to the breach, NSSF issued a statement acknowledging an attempted intrusion targeting its image storage system. The fund assured members and stakeholders that the core systems handling personal and financial data remained secure, with ongoing investigations finding no evidence of data compromise.
PRESS STATEMENT: Attempted Cyber Intrusion. #NSSFKenya #GrowingYouForGood pic.twitter.com/isKwv9pyJk
— NSSF_ke (@NSSF_ke) May 20, 2025
Despite these assurances, the incident has sparked widespread concern among Kenyans, particularly regarding the safety of their retirement savings. The breach underscores the vulnerabilities in critical national infrastructure and the pressing need for robust cybersecurity measures.
Broader Implications and the Need for Enhanced Cybersecurity
This attack on NSSF highlights a growing trend of cyber threats targeting public institutions in Kenya and across Africa. The potential exposure of sensitive data not only threatens individual financial security but also undermines public trust in digital systems.
Cybersecurity experts emphasize the importance of proactive measures, including regular system audits, employee training, and the implementation of advanced security protocols, to safeguard against such threats. As digital transformation accelerates, ensuring the resilience of critical infrastructure becomes paramount.
