Libya Telecom and Technology (LTT), the state-owned telecommunications provider, has confirmed that its core systems and networks have been subjected to a sustained Distributed Denial of Service (DDoS) attack for several days. The attack, which began last week, directly targeted the company’s critical infrastructure, raising renewed concerns about the cybersecurity resilience of Libya’s essential digital services.

According to LTT, the incident immediately activated its emergency response protocols following the detection of deliberate attempts to disrupt network operations and degrade internet and communication services for subscribers. The company stated that these measures were effective in mitigating the attack’s impact, preventing widespread service outages and containing most of the adverse effects.

LTT’s technical teams remain on high alert, conducting continuous, round-the-clock network monitoring to ensure service stability and to guard against further escalation. In parallel, the provider is assessing additional defensive measures aimed at strengthening its cybersecurity posture and enhancing long-term resilience against both current and emerging cyber threats. These efforts align with LTT’s broader mandate to protect Libya’s national communications infrastructure, which underpins government operations, financial systems, businesses, and emergency services nationwide.

The attack comes against the backdrop of Libya’s long-standing vulnerability to cyber threats. A 2023 technical report by Business Insider identified Libya as the most exposed country to significant cybersecurity risks that year, ranking 90th globally and first in Africa. This designation was largely attributed to inadequate safeguards against cybercrime, leaving critical institutions and digital systems highly susceptible to attack.

Previously, the Libyan Post, Telecommunication and Information Technology Holding Company (LPTIC)—the state entity overseeing LTT and other telecom operators—disclosed that its data center had been subjected to persistent cyberattacks. These attacks often involve ransomware, data breaches, and service disruptions, posing serious risks to Libya’s institutional stability and its developing digital economy.

Meanwhile, LTT has continued to advance a major infrastructure modernization initiative alongside its response to the cyber incident. Launched in early December, the project involves the phased shutdown of legacy telephone exchanges as part of a nationwide transition to fibre-optic services. Under this plan, fixed-line telephone services are being transferred to Libya Telecom using newly approved, modern technologies.

The initial phase of the project has already resulted in the shutdown of 70 traditional telephone exchanges. LTT has confirmed that existing Asymmetric Digital Subscriber Line (ADSL) services will remain operational until the fibre-optic rollout is fully completed. The initiative reflects the company’s long-term strategy to modernize Libya’s telecommunications sector and establish a more resilient, sustainable digital infrastructure.