The government has confirmed a cybersecurity attack that temporarily disrupted access to several State websites on Monday, prompting the immediate activation of emergency response teams to restore services and secure the affected systems.
In a statement issued on November 17, 2025, the Ministry of Interior announced that preliminary investigations point to a group calling itself “PCP@Kenya” as the suspected perpetrators of the intrusion, which rendered government platforms inaccessible for a period before recovery efforts took effect.
According to the statement signed by Dr Raymond Omollo, Principal Secretary for Internal Security and Chairperson of the National Computer and Cybercrimes Coordination Committee (NC4), authorities moved swiftly to mitigate the impact once the breach was detected.
“Following the incident, we immediately activated our incident response and recovery procedures, working closely with relevant stakeholders to mitigate the impact and restore access to the affected platforms,” Dr Omollo said.
By the time of the announcement, the government indicated that the situation had been contained and that systems were back online under heightened surveillance. Continuous monitoring has been initiated to detect, block, and neutralise any further attempts.
The PS noted that the government is accelerating efforts to strengthen national cyber defences, citing layered security approaches, improved readiness, and faster containment protocols as key areas of investment.
“Our focus is on building layered defences, improving readiness, and ensuring that any attempt is detected early, contained quickly, neutralised decisively, and its impact minimised,” he said.
Authorities have called on citizens, businesses, and public institutions to remain alert and report any suspicious digital activity.
The statement provided several official reporting channels, including the National KE-CIRT/CC via email at [email protected] or hotlines +254 703 042700 and +254 730 172700; the National Computer and Cybercrimes Coordination Committee (NC4) through telephone +254 716 148 341 or email [email protected]; and the Directorate of Criminal Investigations via its toll-free line 0800 722 203, telephone +254 020 7202000, or email [email protected].
The government stressed that unauthorised access, disruption, or interference with computer systems constitutes a criminal offence under Kenyan law.
Omollo said the attack violates several statutes, including the Computer Misuse and Cybercrimes Act, the Kenya Information and Communications Act, and the Data Protection Act.
“Individuals found culpable will face the full force of the law,” the statement warned.
Amid rising concerns over cyber threats targeting both public and private entities, the government reiterated its commitment to safeguarding Kenya’s digital infrastructure while advancing the national digital transformation agenda.
“We remain focused on enhancing cyber resilience through strengthened capabilities, improved coordination, and sustained collaboration with the private sector and other stakeholders,” Dr Omollo said.
The government has assured the public that investigations are ongoing and that further updates will be provided as necessary.
