Cyberattack Disrupts South African Weather Service, Compromises Essential Forecasting Systems

The South African Weather Service (SAWS), a pivotal entity in the provision of critical weather information and forecasting, suffered a cyberattack on Sunday evening, resulting in significant disruptions to its information and communications technology systems. The attack, described as the work of “criminal elements”, is among a series of cyber incidents increasingly targeting critical infrastructure in South Africa.

SAWS CEO, Ishaam Abader, emphasized that despite the setbacks, essential weather services for marine and aviation sectors, as well as severe weather alerts, continue to be communicated through alternative channels such as email and social media. The central hub for SAWS' forecasting, its website, continues to remain offline. In response, a dedicated team of engineers and cybersecurity experts have been mobilized and are tasked with restoring full functionality to the impacted systems. Essential communication functions like email and telephone have already been reinstated.

The urgency of restoring the weather service’s operations stems from its crucial role in safeguarding lives and property through timely and accurate weather updates. According to Abader, “The SAWS understands the significance of its services insofar as they relate to saving lives and property from the impact of hazardous weather."

This recent cyberattack isn’t an isolated incident but part of a troubling rise in cyber-attacks aimed at South African institutions. An opinion piece in the Mail & Guardian in November highlighted a worrying trend of increasing cyberattacks across all sectors, citing data from the Council for Scientific and Industrial Research’s national cybersecurity survey. According to the survey, 88% of organizations in South Africa experience up to five cyberattacks annually, with phishing and ransomware being the most prevalent forms of attack.

Notably, these cyber incidents are not only disruptive but also financially draining. The Department of Public Works and Infrastructure reported an estimated loss of R300 million over the past three years due to cybercrime. This financial strain is compounded by the broader implications on service provision and national security.

As SAWS continues to combat the aftermath of the cyberattack, it serves as a critical reminder of the vulnerabilities that exist within national infrastructures and the pressing need for enhanced cybersecurity measures. The organization assures continued updates to the public as it works toward a resolution.

In this digital age, where cyber threats loom large, the safety and continuity of essential services hinge greatly on the robustness of cyber defenses and the swift response to emerging threats.