Ethiopia Financial Intelligence Service
ddosecretThis record tracks a ransomware attack claimed by the ddosecret group against Ethiopia Financial Intelligence Service. It collects the publicly disclosed attack details — sector, location and timeline — as published on the operator's leak site and indexed by Breach House.
Window Zero
EXPOSURE GAPWindow Zero is the time the breach stayed in the open before anyone said so — the gap between when the attack was first discovered on the operator's leak site (t1) and when it was publicly disclosed (t2). The wider this window, the longer victims, staff and customers were exposed with no warning.
Attack Summary
Ethiopia Financial Intelligence Service is Ethiopia’s financial intelligence agency in Addis Ababa, operating in the finance, legal, and insurance sphere. The service, formerly known as the Financial Intelligence Center, was re-established by Council of Ministers Regulation No. 490/2022 and began operations in January 2012. Its mandate includes coordinating institutions involved in anti-money laundering, counter-terrorism financing, and proliferation financing, while organizing and analyzing information to support related obligations. It was listed as a ransomware victim associated with ddosecret.
Leak Screenshots
SAMPLEProof-of-breach screenshots the operator posted from the stolen data. Previews are redacted and locked — the originals are available on HaveIBeenRansom.