Setson Tangeni Haidula
The recent hacking of Telecom Namibia has exposed serious flaws in the nation’s approach to cybersecurity. Sensitive data was reportedly compromised, exposing vulnerabilities in critical systems—an event that underscores how unprepared we are for modern digital threats. This breach isn’t just Telecom’s problem; it reflects the vulnerability of Namibia’s digital infrastructure, including public institutions and government ministries. It’s a wake-up call to take cybersecurity as seriously as other countries have done.
Namibia’s approach to cybersecurity is outdated and reactive. For instance, the United States established the National Security Agency (NSA) as a central pillar of its cyber defence decades ago. Today, the NSA not only protects government networks but also works with private organizations to prevent attacks and strengthen national resilience. Similarly, in Europe, countries like Estonia—famously the victim of devastating cyberattacks in 2007—have become global leaders in cybersecurity. Estonia rebuilt its digital infrastructure with strong defences, establishing institutions like the Cybersecurity Council and creating partnerships between government and the private sector. Namibia, however, remains stuck in a mindset where such initiatives are seen as optional rather than essential.
The Telecom Namibia hack should be viewed as a turning point. This incident is a glaring example of what can happen when cybersecurity is neglected. Hackers increasingly target countries with weak defences, exploiting outdated technology and untrained staff. Namibia fits this profile, and unless changes are made, more organizations—both public and private—will fall victim to similar breaches.
This hack also raises a crucial question: if hackers can breach Telecom Namibia, what’s stopping them from targeting more sensitive institutions? Government ministries handle critical data, such as national identification records, tax information, and even election systems. In 2016, Russian hackers infiltrated the U.S. Democratic National Committee (DNC), exposing vulnerabilities in their election process. If Namibia doesn’t act now, it could face similar consequences, jeopardizing not just data but also national security.
The first lesson is that cybersecurity is no longer just an IT issue—it’s a national security issue. Public institutions and private companies alike must understand that the risks are too significant to ignore. The second lesson is that prevention is always cheaper than recovery. After the WannaCry ransomware attack in 2017, which affected hundreds of thousands of systems worldwide, organizations that had invested in preventive measures suffered far less damage than those that didn’t.
Another critical lesson is that human error is often the weakest link. Many attacks succeed because of simple mistakes, such as employees falling for phishing emails or failing to update software. Even the most advanced systems can be compromised if people aren’t adequately trained.
Namibia needs a centralized body like South Africa’s Cybersecurity Hub, which serves as a national resource for responding to cyber threats. This agency could coordinate efforts across public and private sectors, conduct threat assessments, and offer training programs.
Countries like the United Kingdom have implemented strict cybersecurity frameworks that set clear standards for organizations, from regular audits to mandatory incident reporting. Namibia must follow suit, ensuring that all institutions meet basic security requirements.
Many Namibian organizations, including public institutions, still rely on outdated systems that are easy targets for hackers. Upgrading these systems and hiring skilled cybersecurity professionals should be a top priority. In the U.S., for example, the Cybersecurity and Infrastructure Security Agency (CISA) works closely with experts to protect critical infrastructure. Namibia must adopt a similar approach.
Cybersecurity training must extend beyond IT staff. In 2020, a phishing scam allowed hackers to breach Twitter’s internal systems, gaining access to high-profile accounts. The attack succeeded because employees weren’t adequately trained to recognize the threat. Namibia must ensure that everyone—from entry-level staff to senior management—is equipped to spot and prevent attacks.
Cybersecurity is too big a challenge for any single organization. Namibia’s government should collaborate with private cybersecurity firms, as well as regional and international partners. Estonia, for instance, developed its cutting-edge defences with input from NATO’s Cooperative Cyber Defence Centre of Excellence. Namibia could benefit from similar partnerships.
The Telecom Namibia hack is a warning that Namibia cannot afford to ignore. The world is becoming more interconnected, and with that comes greater risk. If Namibia does not take cybersecurity seriously, the consequences will be dire—public trust eroded, critical services disrupted, and national security compromised.
Countries like the U.S. and Estonia have shown that strong cybersecurity measures can prevent disasters. Namibia must follow their lead by investing in technology, creating robust institutions, and fostering a culture of vigilance. Cybersecurity isn’t just about protecting data; it’s about protecting the future of the nation.
This hack should be treated not as a failure but as an opportunity to rebuild stronger, smarter, and safer. It’s time for Namibia to step into the modern age of cybersecurity—before the next attack hits.
Setson Tangeni Haidula is a graduate of the University of Namibia, holding a Bachelor of Public Management (Honours) with a specialization in Political Science and a Diploma in Local Government Studies. The perspectives presented in this article are exclusively his own and do not represent the views or official stance of his employer. He can be reached via email at setsonhaidula@gmail.com.