NAIROBI, Kenya — The Kenya Revenue Authority (KRA) has confirmed a major security breach involving its official X (formerly Twitter) account, @KRACare. The compromised handle has been changed to “StandsX,” prompting an urgent public warning about potential fraudulent activity.
The authority is urging the public to exercise extreme caution and avoid engaging with the now-compromised account, which hackers could use to solicit personal or financial information.
In a statement released on its verified corporate X account, the KRA issued a strict alert:
“Members of the public are strongly warned not to engage, share personal information, or send money to any messages or posts from this account, as they are fraudulent.”
Security response and official channels
The KRA has immediately launched a collaborative effort with X to regain control of the account and restore its security.
Until the breach is resolved, the Authority confirms that official updates will be provided only through its verified communication channels, which include: Facebook: https://facebook.com/KRACare and WhatsApp: 0711099999
“Official updates will be shared through verified KRA communication channels,” the authority said.
Analysis of the cyberattack
Cybersecurity experts note that attacks targeting public-facing social media accounts are increasingly common, as they exploit public trust to extract financial information.
Hackers often gain access through methods like phishing, weak or reused passwords, or insider compromise.
Also Read: Tanzania blocks X access following police account hack and activist arrests
Once control is established, attackers impersonate the organization, post malicious links, and scam followers.
The changing of the account name to something ambiguous like “StandsX” is a classic technique used to obscure the account’s original identity while maintaining an audience until the breach is discovered.
To prevent such incidents, cybersecurity specialists strongly recommend users activate two-factor authentication, utilize unique passwords, and regularly monitor their accounts for unusual access.
The KRA has assured Kenyans that securing the compromised account is being treated as a top priority.
