Ransomware group, Qilin, listed Kenya Electricity Generating Company (KenGen) on their dark web leak site. Initial evidence includes internal documents and spreadsheets, signaling a significant breach. While no large data dump is currently available, this appears to be a pressure tactic to extort the organization.
KenGen, a critical infrastructure provider, powers much of Kenya and parts of East Africa. This attack raises major concerns around the targeting of essential service providers in the region.
Organizations in Africa must increase vigilance, invest in network segmentation, endpoint monitoring, and timely threat intelligence.