Inc Ransomware Group Claims Attack on Namibia Airports Company in March 2026
The ransomware group Inc has taken responsibility for a cyberattack on Namibia Airports Company (NAC), the state-owned operator of eight major airports in Namibia, which occurred on March 6, 2026. According to Inc’s data leak site, the group exfiltrated nearly 500 GB of data during the breach. However, NAC has not confirmed Inc’s claims, and the nature of the compromised data remains unverified.
In a March 16, 2026 statement, NAC acknowledged the incident, describing it as an unauthorized access to network infrastructure and administrative accounts. The company reported that services were restored with limited operational disruption and stated that no evidence of data exfiltration had been found at the time, though investigations are ongoing.
About Inc
First detected in July 2023, Inc is a ransomware group known for targeting healthcare, education, and government sectors, including 24 confirmed attacks on government entities, four of which were airports. The group employs spear phishing and software vulnerabilities to deploy malware that both steals data and encrypts systems, demanding ransom payments for decryption.
Inc has claimed 694 ransomware attacks in total, with 173 confirmed by victims. In 2026 alone, the group has taken credit for 114 attacks, 10 of which were verified. This marks Inc’s fifth attack on an aviation company, following previous breaches at Oceanair (USA), Air Europa (Spain), South African Airways, and Air Côte d’Ivoire.
Broader Impact on Transportation Sector
The NAC attack is part of a growing trend of ransomware targeting transportation infrastructure. In 2026, at least 22 confirmed ransomware attacks have hit government entities worldwide, along with four on private transport companies. Recent incidents include:
- Nagoya Port Authority (Japan, January 2026) – Claimed by LockBit
- Tulsa International Airport (USA, January 2026) – Claimed by Qilin
Such attacks can disrupt operations, delay services, compromise booking systems, and expose travelers to fraud risks, often forcing organizations to choose between paying ransoms or facing prolonged downtime and data loss.
Ransomware in Namibia
Namibia has seen five confirmed ransomware attacks in recent years, including:
- Otjiwarongo Municipality (July 2025) – Claimed by Inc
- Namibia Wildlife Resorts (February 2021)
- Telecom Namibia (November 2024) – Claimed by Hunters International
- Paratus Group (February 2025) – Claimed by Akira
NAC, overseen by the Ministry of Public Works and Transport, manages key airports in Namibia, including Hosea Kutako International Airport (Windhoek) and Walvis Bay International Airport. The full scope of the March 2026 breach remains under investigation.
Paratus Group cybersecurity rating report: https://www.rankiteo.com/company/paratus-africa
Namibia Airports Company Limited cybersecurity rating report: https://www.rankiteo.com/company/namibia-airports-company-limited
Telecom Namibia cybersecurity rating report: https://www.rankiteo.com/company/telecomnamibia
"id": "PARNAMTEL1773945547",
"linkid": "paratus-africa, namibia-airports-company-limited, telecomnamibia",
"type": "Ransomware",
"date": "3/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Aviation/Transportation',
'location': 'Namibia',
'name': 'Namibia Airports Company (NAC)',
'type': 'State-owned company'}],
'attack_vector': ['Spear phishing', 'Software vulnerabilities'],
'data_breach': {'data_encryption': 'Yes (ransomware)',
'data_exfiltration': 'Claimed by Inc (500 GB)'},
'date_detected': '2026-03-06',
'date_publicly_disclosed': '2026-03-16',
'description': 'The ransomware group Inc has taken responsibility for a '
'cyberattack on Namibia Airports Company (NAC), the '
'state-owned operator of eight major airports in Namibia, '
'which occurred on March 6, 2026. The group exfiltrated nearly '
'500 GB of data during the breach. NAC acknowledged '
'unauthorized access to network infrastructure and '
'administrative accounts but reported no evidence of data '
'exfiltration at the time of investigation.',
'impact': {'data_compromised': '500 GB of data (claimed by Inc)',
'downtime': 'Limited operational disruption',
'operational_impact': 'Services restored with limited disruption',
'systems_affected': 'Network infrastructure, administrative '
'accounts'},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain, Data exfiltration',
'ransomware': {'data_encryption': 'Yes',
'data_exfiltration': 'Yes (500 GB claimed)',
'ransomware_strain': 'Inc'},
'references': [{'source': 'Inc Ransomware Group data leak site'},
{'date_accessed': '2026-03-16',
'source': 'NAC Public Statement'}],
'response': {'communication_strategy': 'Public statement on March 16, 2026',
'recovery_measures': 'Services restored'},
'threat_actor': 'Inc Ransomware Group',
'title': 'Inc Ransomware Group Claims Attack on Namibia Airports Company',
'type': 'Ransomware'}