Cyber Incident Victim: Comissão Nacional de Eleições
Date:
Sep 2024
Location:
Mozambique
Summary
The Comissão Nacional de Eleições of Mozambique experienced a cyberattack targeting its webpages, disrupting operations during a critical period preceding general elections. The electoral management body confirmed the incident occurred on a Sunday morning, regained control of its systems, and initiated security enhancements, though the full consequences remained under assessment. The attack coincided with heightened political tensions, including criticism from opposition parties over alleged procedural irregularities in election oversight, though no direct link between these disputes and the cyber incident was established.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
The Comissão Nacional de Eleições (CNE) of Mozambique experienced a confirmed cyberattack targeting its webpages on the morning of September 26, 2024. The electoral management body publicly disclosed the incident through an official statement, acknowledging the breach but providing limited technical specifics regarding the attack vector or initial intrusion method. The CNE asserted it had regained control of the compromised systems by the time of the announcement and was actively implementing enhanced security measures to fortify its infrastructure. While the full scope of the incident remained under assessment, the organization emphasized that the consequences of the attack were still being determined. No explicit details were released regarding potential data exfiltration, system disruption duration, or specific compromised functionalities beyond the general reference to affected "pages." The attack occurred during a critical pre-election period, precisely one week before the scheduled closure of campaigning for Mozambique’s October 9 general elections.
The incident unfolded amid heightened political tensions, with the CNE simultaneously facing public criticism from the Podemos party regarding electoral procedures unrelated to the cyberattack. Podemos, supporting presidential candidate Venâncio Mondlane, contested a directive from the Manjacaze District Elections Commission in Gaza Province requiring delegate assignments within a three-day window, alleging illegality and intent to obstruct oversight. The cyberattack’s proximity to the elections—involving over 17 million registered voters and contested by four presidential candidates—raised operational concerns, though the CNE maintained its recovery efforts. No attribution claims or threat actor details were provided in the available information, nor did the CNE’s statement link the technical breach to the ongoing political disputes. The organization’s public communications focused exclusively on regaining control and reinforcing security without elaborating on forensic findings, long-term mitigation strategies, or potential impacts on electoral timelines.