CyHawk is Africa’s open-source cyber threat intelligence platform dedicated to tracking, documenting, and exposing digital threats targeting individuals, organizations, and key sectors across the continent.
We publish monthly threat reports that highlight cyber incidents impacting the African digital space. We aim to raise awareness, promote transparency, and empower defenders with region-specific intelligence.
CyHawk exists to make African-focused threat intelligence accessible, relevant, and actionable for everyone.
Alexandria University Egypt Hit by Alleged Data Leak
A threat actor known as DAYzer0DAY, claiming ties to the “SYLHET GANG-SG,” has posted what they allege is a breach involving over 30,000 records from
Hacker Leaks Tunisian Travel Agency Data
A threat actor operating with the alias mecrobyte has claimed responsibility for a breach of Jektis Travel, a travel agency based in Tunisia. Posting on
Dark Web Actor Claims Breach of Inwi Telecom’s Database in Morocco
A threat actor using the name Evil_BYTE_Officiel has posted a database they claim was stolen from Inwi Telecom Morocco (inwi.ma) on a dark web forum.
Threat Actor B4baYega Claims Hack of Moroccan Government Procurement Database
A threat actor identified as B4baYega has claimed responsibility for a data breach affecting marchespublics.gov.ma, the official platform for public procurement in Morocco. The database
Threat Actor Offers SSH Root to .gov.et for $150 in Monero
A threat actor using the alias dcadcwacd has listed what they claim is SSH root access to a government subdomain under .gov.et, Ethiopia’s official government
10GB Alleged Leak of Senegal Embassy Data For Sale on Dark Web
A threat actor using the handle Doxeur23azi has allegedly put up for sale a 10GB database claimed to belong to the Embassy of Senegal in
Hackers Share Algeria Post ECCP Login Credentials
A threat actor, sanji_shi5, posted on a dark web forum, claiming to have exposed login credentials linked to ECCP accounts, the online platform that lets
South Africa Recruitment Data Breach Exposes Thousands
A threat actor, dumpster, has listed what appears to be a large database of South African job seekers’ profiles for sale on a dark web
Threat Actor Claims Admin Panel Breach of OwlCom Tunisia
A threat actor operating under the alias, mecrobyte, has posted on a dark web forum announcing a successful breach of the admin controller for OwlCom,