Siphambili, NokuthabaMahlasela, Oyeana NBaloyi, ErrolMukondeleli, Elekanyani2025-05-022025-05-022024-09979-8-3503-8798-8979-8-3503-8797-1https://doi.org/10.1109/IMITEC60221.2024.10850969http://hdl.handle.net/10204/14219Ransomware attacks have emerged as a significant cybersecurity threat, impacting organisations globally, including the South African public sector. This study conducted a narrative review aimed at investigating the South African public sector's capability to address ransomware attacks. The review examined news articles, reports, and literature from databases such as Scopus, Google Scholar, and ScienceDirect. Furthermore, this review explored the evolving landscape of ransomware, including its modus operandi and impacts. The findings revealed that since 2019, ten different South African public sector entities have been targeted by ransomware, with one entity being hit twice. Based of those findings, this study provided recommendations to strengthen the South African public sector's national defences and improve its preparedness for future ransomware attacks.FulltextenRansomwareCommon threatsMitigationDefence mechanismsConference PresentationN/A