In a sweeping early-morning breach, a cluster of major Kenyan government websites went dark on Monday after what officials believe was a coordinated cyberattack. The disruption left thousands of citizens unable to access essential public services, raising fresh questions about the country’s digital security.

Websites belonging to ministries and state agencies — including Health, Education, Labour, Environment, ICT, Tourism, Interior, and State House — were hit. Several pages were defaced, their normal content replaced with inflammatory slogans. Among the messages displayed were: “Access denied by PCP”, “We will rise again”, and extremist phrases linked to white supremacist movements.

The intrusion, which appeared to unfold in the early hours, blocked access to routine online services and caused widespread frustration. “I woke up to check something on the Immigration page and found it completely inaccessible,” said one Nairobi resident, who described the outage as “deeply unsettling”.

It was not just ministries. Key departments such as Immigration, the Directorate of Criminal Investigations and the Directorate of Public-Private Partnerships were also affected. Even Nairobi County reported downtime. A spot check by local outlets suggested that Defence and Treasury escaped the breach, though officials have not confirmed this publicly.

By Monday afternoon, the government had yet to issue any statement. No group had stepped forward to claim responsibility, leaving the scale, intent and origin of the attack unclear. Cybersecurity analysts say that the lack of attribution is common in the first hours of such incidents. “Early silence doesn’t mean authorities aren’t working,” a Nairobi-based cyber expert said. “It simply means they’re trying to understand what they’re dealing with before speaking.”

Some institutions — including eCitizen, the National Transport and Safety Authority, the Judiciary and the Kenya National Examinations Council — appeared to be operating normally.

Kenya has faced similar breaches before. In 2023, a Sudanese hacker group claimed responsibility for widespread disruptions targeting government services. At the time, the group accused Kenya of interfering in Sudan’s internal affairs, though it provided no verifiable evidence. Monday’s incident, however, bears no confirmed link to that group or any other.

For now, users are waiting for official communication — and restoration of the services they depend on. As one civil servant noted quietly outside a government office in Nairobi: “A digital system is only as strong as the trust people have in it.”