Cyber Incident Victim: Ministry of Finance of Angola

On February 23, 2021, the Angolan Ministry of Finance experienced a cyber attack targeting its technological support platform, disrupting access to email systems and shared folders. The incident occurred on a Thursday, though the exact time of initial compromise and duration of disruption were not specified in public statements. The Ministry confirmed the attack through an official announcement but did not identify the threat actors’ origins or motivations. No technical details regarding the attack vector—such as malware, phishing, or exploitation techniques—were disclosed. The institution’s primary technological infrastructure, which facilitated routine administrative operations and communications, was confirmed as the focal point of the breach.

Despite the disruption, the Ministry emphasized that critical financial systems remained operational throughout the incident. Salary processing services and revenue collection platforms—including SIGT (Sistema Integrado de Gestão Tributária), ASYCUDA (Automated System for Customs Data), taxpayer service portals, municipal systems, and the Integrated State Financial Management System (SIGFE)—were unaffected and continued functioning normally. The Ministry’s public reassurance aimed to mitigate concerns over potential delays in public sector payments or revenue collection activities. No evidence suggested data exfiltration, financial theft, or secondary disruptions to external economic systems. The incident response appeared limited to internal assessments and public communication, with no disclosed collaboration with external cybersecurity entities or law enforcement. Restoration timelines for the compromised email and file-sharing services were not provided in the available reporting.