Data Rooms Live Africa

Africa

Most-targeted: #3 of 6 Responses: #6 of 6 Cyber intensity: #4 of 6 Momentum: #1 of 6
EuRepoC Global Database Regional profile 54 countries

Operations against African entities are coded sparsely but with rising severity in select sectors. This profile decomposes the regional record down to the country level.

179 incidents tracked · 48 countries with activity · 3897 responses logged · Maintained by EuRepoC research analysts · Updated 05 Jun 2026 About this profile
46pct
Moderate
Africa — Monthly Volume RankJun 2026 · 0 incidents · smoothed 1.5
Africa — monthly activity last 18 months · ≈28 coded operations in Africa
Bar height shows how many incidents struck Africa entities that month; colour shows the regional volume rank. Responses are shown below the line. Click a month to anchor the data below.
Volume rank Low Moderate Elevated High Responses
Live · monthly volume rank vs. 2022+ history

All 48 Africa countries with recorded activity, ranked by smoothed monthly volume. Pct rank compares each country to its own monthly history since 2022.

Volume rank Low Moderate Elevated High
# Country Incidents Pct rank Momentum Top sector Responses
01
ZA South Africa
0
75pct High
+0% Critical infrastructure 104
02
NG Nigeria
0
69pct Elevated
State institutions / political system 93
03
AO Angola
0
53pct Elevated
State institutions / political system 87
04
BJ BJ
0
56pct Elevated
79
05
BW Botswana
0
56pct Elevated
Critical infrastructure 79
06
BF Burkina Faso
0
56pct Elevated
Critical infrastructure 79
07
BI Burundi
0
56pct Elevated
Critical infrastructure 79
08
CF CF
0
56pct Elevated
79
09
CG CG
0
56pct Elevated
79
10
CV CV
0
56pct Elevated
79
11
CM Cameroon
0
54pct Elevated
Critical infrastructure 79
12
CD Congo, the Democratic Republic of the
0
56pct Elevated
End user(s) / specially protected groups 81
13
DJ Djibouti
0
53pct Elevated
Critical infrastructure 79
14
ER ER
0
56pct Elevated
79
15
ET Ethiopia
0
54pct Elevated
State institutions / political system 81
16
GM GM
0
56pct Elevated
79
17
GQ GQ
0
56pct Elevated
79
18
GW GW
0
56pct Elevated
79
19
GA Gabon
0
56pct Elevated
State institutions / political system 85
20
GH Ghana
0
56pct Elevated
State institutions / political system 81
21
GN Guinea
0
55pct Elevated
Critical infrastructure 79
22
CI Ivory Coast
0
54pct Elevated
Critical infrastructure 79
23
KM KM
0
56pct Elevated
79
24
KE Kenya
0
43pct Moderate
State institutions / political system 88
25
LR LR
0
56pct Elevated
79
26
LS LS
0
56pct Elevated
79
27
ML ML
0
56pct Elevated
79
28
MR MR
0
56pct Elevated
79
29
MU MU
0
56pct Elevated
79
30
MZ MZ
0
56pct Elevated
79
31
MG Madagascar
0
56pct Elevated
Critical infrastructure 79
32
MW Malawi
0
55pct Elevated
State institutions / political system 80
33
NE NE
0
56pct Elevated
79
34
NA Namibia
0
49pct Moderate
Critical infrastructure 82
35
RW Rwanda
0
53pct Elevated
State institutions / political system 81
36
SL SL
0
56pct Elevated
79
37
SS SS
0
56pct Elevated
79
38
ST ST
0
56pct Elevated
79
39
SN Senegal
0
37pct Moderate
State institutions / political system 80
40
SC Seychelles
0
40pct Moderate
Critical infrastructure 79
41
SO Somalia
0
54pct Elevated
State institutions / political system 81
42
SZ Swaziland
0
56pct Elevated
State institutions / political system 81
43
TD TD
0
56pct Elevated
79
44
TZ Tanzania
0
49pct Moderate
State institutions / political system 85
45
TG Togo
0
56pct Elevated
Social groups 81
46
UG Uganda
0
55pct Elevated
Critical infrastructure 87
47
ZM ZM
0
56pct Elevated
79
48
ZW Zimbabwe
0
56pct Elevated
State institutions / political system 89

Publications

0 briefings · Africa
Editorial briefings

All incidents

176 incidents · 35 responses · Africa
Most recent first
25 May2026
Unknown Threat Actors Launched DDoS Attacks On Nigeria Data Protection Commission’s Service Portal In Nigeria Between 25 and 31 May 2026unscored
incident_id · 5590
Nigeria · Not attributedDisruption
18 May2026
Unknown Threat Actors With The Alias 'Black Matter' Carried Out DDoS Attack Against Web Hosting Platform 1-Grid in South Africa On 18 May 2026unscored
incident_id · 5563
South Africa · Unknown · Black Matter GroupDisruption
01 May2026
Unknown Threat Actor Exploited Zero-day Vulnerability in Web Hosting Software cPanel to Target Government and Military Organizations in Southeast Asia and Worldwide since Mai 2026unscored
incident_id · 5526
South Africa · Not attributedData theft
Cybercriminal Group ShinyHunters Breached Canvas Platform of Instructure and Stole Data of Thousands of Schools and Universities May 2026unscored
incident_id · 5536
United States · Unknown · ShinyHunters/UNC6040/Bing LibraData theft
29 Apr2026
Operational · in-kindSame day
[AI] US Federal Bureau of Investigation and Instructure Released a Joint Statement Regarding the Resolution of the Canvas Platform Cyber Attack by ShinyHunters on 12 May 2026
re: Cybercriminal Group ShinyHunters Breached Canvas Platform of Instructure and Stole Data of Thousands of Schools and Universities May 2026
19 Mar2026
Operational · in-kind+59 mo after incident
US Department of Justice Seized Iran-Linked Hacking Domains Tied to Transnational Repression on 19 March 2026
Federal Bureau of Investigation re: Iranian state-sponsored hackers disrupted Albanian government websites and essential services on 15 July 2022
18 Mar2026
Operational · in-kind+7d after incident
US CISA Warned of Cyber Activity Targeting Endpoint Management Systems Following Stryker Microsoft Environment Breach on 18 March 2026
Cybersecurity and Infrastructure Security Agency re: Iran-linked Handala Disrupted Locations of Stryker Worldwide On 11 March 2026
14 Mar2026
Rhetorical+59 mo after incident
US Intelligence Community Published Annual Threat Assessment Discussing Russian, Chinese, Iranian, and North Korean Threats, 14 March 2026
United States Office of the Director of National Intelligence re: Iranian state-sponsored hackers disrupted Albanian government websites and essential services on 15 July 2022
11 Mar2026
Iran-linked Handala Disrupted Locations of Stryker Worldwide On 11 March 20268.0
incident_id · 5386
Global (region) · Iran, Islamic Republic of · Handala/Handala Group/Handala Hack/ Handala Hack Team/Hatef/Hamsa (MOIS)Data theft
01 Mar2026
Ransomware Group XP95 Breached Statistics South Africa in March 20263.0
incident_id · 5445
South Africa · Unknown · XP95Data theft
08 Feb2026
INC Ransom Claimed Ransomware Attack On Ivorian National Airline Air Côte d'Ivoire on 8 February 20263.0
incident_id · 5327
Ivory Coast · Unknown · INC RansomData theft
19 Jan2026
Green Blood Group Compromised Senegalese Directorate Of File Automation on 19 January 20263.0
incident_id · 5272
Senegal · Unknown · Green Blood GroupData theft

About this profile

This is the Africa view of the Major Cyber Incidents room — the same coded corpus, scoped to operations against Africa entities and the institutional responses they provoked. Africa is one of the six world regions EuRepoC tracks; this profile resolves the regional record down to individual countries.

Country figures decompose the regional total: incident volume, the severity mix of those incidents, and the momentum of activity against each country's own rolling 12-month baseline. Country-level profiles arrive in a follow-up.

Back to the global room How Cyber Intensity is calculated Browse the full EuRepoC database Coding methodology & sources
EuRepoC Global Database — Updated 05 Jun 2026.