The designated operator of Botswana, BotswanaPost, wishes to inform Union member countries and their designated operators that a cybersecurity incident occurred on 29 March 2025, resulting in a temporary service disruption. BotswanaPost’s endpoint detection and response system detected a ransomware attack targeting its server infrastructure. The incident was promptly detected and contained. Upon discovery, BotswanaPost’s cybersecurity response plan was immediately activated, and the information technology team, in collaboration with experts and relevant authorities, is actively working to contain the breach, assess its impact, and reinforce security measures. While the investigation is still ongoing, BotswanaPost is confident that the swift actions taken have minimized potential damage. However, as a precautionary measure, postal services will remain suspended and IT services will remain unavailable until BotswanaPost is certain that issue has been fully resolved. BotswanaPost remains fully committed to safeguarding the integrity of its systems. It is reviewing and reinforcing its cybersecurity protocols, focusing on access controls, threat detection, and employee awareness training. BotswanaPost thanks all Union member countries and their designated operators for their understanding. It will provide an update via EmIS once the situation has returned to normal.
