The Direction générale de la Comptabilité publique et du Trésor in Senegal has confirmed it suffered a cyberattack that compromised part of its information systems, with reports indicating that up to 70 gigabytes of data may have been exposed on the dark web.
The breach, which occurred over the weekend of May 10, was acknowledged in an official statement transmitted to the national press. Authorities described it as an “incident informatique” that affected sections of the treasury’s digital infrastructure, raising concerns about the security of sensitive government financial data.
While the full extent of the damage is still being assessed, early reports suggest that a significant volume of data could have been accessed or extracted by attackers. The alleged exposure of 70GB of information, if confirmed, would make the incident one of the most serious cyber breaches involving a public financial institution in the region.
The Direction générale de la Comptabilité publique et du Trésor plays a central role in managing government finances, including public accounting, payments, and treasury operations. Any disruption to its systems could have implications for financial administration and public sector operations.
Officials have not yet disclosed the exact nature of the compromised data, but cybersecurity experts warn that such breaches can involve anything from internal communications and financial records to personal data, depending on the systems affected.
The incident highlights growing cybersecurity risks across Africa, where governments and institutions are increasingly digitising operations without always having robust protective infrastructure in place. As digital transformation accelerates, public sector entities have become more attractive targets for cybercriminals.
Authorities in Senegal say measures have been taken to contain the breach and secure affected systems. Investigations are ongoing to determine how the attackers gained access and whether vulnerabilities still exist within the network.
Cybersecurity specialists typically recommend immediate actions following such incidents, including system isolation, forensic analysis, and strengthening of security protocols. Long term responses often involve upgrading infrastructure, improving staff training, and implementing stricter data protection measures.
The reported leak on the dark web adds another layer of concern. Data published or sold on such platforms can be exploited for fraud, identity theft, or further cyberattacks, making containment and response efforts critical.
The attack also underscores the need for stronger regional cooperation on cybersecurity. As threats become more sophisticated, governments are increasingly required to share intelligence, develop coordinated responses, and invest in resilient digital systems.
For Senegal, the breach serves as a reminder of the vulnerabilities that accompany digital progress. While technology offers efficiency and transparency, it also introduces new risks that must be actively managed.
As investigations continue, authorities are expected to provide further updates on the scope of the breach, the nature of the exposed data, and steps being taken to prevent similar incidents in the future.
