Skip to main content
News Directory 3
  • Business
  • Entertainment
  • Health
  • News
  • Sports
  • Tech
  • World
Menu
  • Business
  • Entertainment
  • Health
  • News
  • Sports
  • Tech
  • World
South Africa's Banks Breached: Hackers Expose Data of Absa and Standard Bank Customers - News Directory 3

South Africa’s Banks Breached: Hackers Expose Data of Absa and Standard Bank Customers

November 24, 2024 Catherine Williams Business
News Context
At a glance
Original source: mybroadband.co.za

A hacking group called N4aughtySecGroup claims to have breached credit bureaus in South Africa. They say they collected Social Relief of Distress (SRD) grants fraudulently and accessed the financial systems of the country. They have released data that seems to belong to customers of Absa and Standard Bank.

Earlier this month, N4aughtySecGroup informed the media of their actions. They stated they illegally registered thousands of SRD grants of R370 per month, totaling R175 million (about $10 million). The group obtained this information from TransUnion, Experian, and XDS through data leaks.

Their announcement followed a study by two Stellenbosch University students that uncovered significant fraud within the South African Social Security Agency (Sassa). Last year, N4aughtySecGroup claimed it breached TransUnion and Experian and demanded a ransom of $30 million (R530 million) from each. This time, however, they are not seeking money—they want an apology for the security lapses.

To support their claims, the group shared sensitive information about two journalists from MyBroadband, including specific details that could only be obtained through a data breach. After credit bureaus denied any breaches and banks assured that no leaked data came from their systems, N4aughtySecGroup released more files containing personal information about millions of customers at Absa and Standard Bank.

Absa acknowledged the seriousness of the claims and noted that the data seems to be similar to a dataset reviewed in 2023. They assured that they monitor and close suspicious accounts daily. In contrast, Standard Bank did not comment, emphasizing client confidentiality.

How can South Africa improve its cybersecurity measures to prevent incidents like the one involving N4aughtySecGroup?

Exclusive Interview: Cybersecurity Expert Weighs In on N4aughtySecGroup’s Allegations of Data Breach in South Africa

By [Your Name] | News Editor, NewsDirectory3.com

In light of the recent claims made by the hacking group known as N4aughtySecGroup, which alleges to have breached the security of South African credit bureaus and manipulated Social Relief of Distress (SRD) grants, we sat down with Dr. Amanda Tshawe, a leading cybersecurity expert and professor at the University of Cape Town. Dr. Tshawe provided valuable insights into the implications of these alleged actions and the broader context of cybersecurity in South Africa.

NewsDirectory3.com: Dr. Tshawe, thank you for joining us today. To start, can you explain the significance of N4aughtySecGroup’s claims about breaching credit bureaus and the potential fallout from such an incident?

Dr. Amanda Tshawe: Thank you for having me. The claims made by N4aughtySecGroup are alarming, particularly because they involve critical infrastructure like credit bureaus and government financial assistance programs. If true, this breach could undermine the trust in these institutions and lead to significant financial losses. The fraudulent registration of SRD grants, in this case, not only steals from the state but also affects the most vulnerable populations relying on this support.

NewsDirectory3.com: The group states they fraudulently obtained around R175 million (approximately $10 million) through these fraudulent grants. What does this level of fraud indicate about the state of cybersecurity in South Africa?

Dr. Amanda Tshawe: This level of fraud suggests systemic vulnerabilities in our cybersecurity measures and regulations surrounding sensitive data. We have witnessed an uptick in cybercrime not only in South Africa but globally, and it highlights the need for more robust security protocols and frameworks. It indicates that both private and public sectors need to invest significantly in preventing unauthorized access and protecting citizen data.

NewsDirectory3.com: N4aughtySecGroup claims to have extracted data from TransUnion, Experian, and XDS. How serious is this issue regarding data privacy laws in South Africa?

Dr. Amanda Tshawe: Very serious. The Protection of Personal Information Act (POPIA) was designed to safeguard citizens’ personal data. If these claims are verified, it would represent a significant breach of this legislation. Companies managing sensitive personal information must ensure they have stringent security measures in place. A lapse can not only have financial repercussions but can also lead to legal actions against these firms.

NewsDirectory3.com: Earlier this month, this incident came to light following a study by two Stellenbosch University students who identified significant fraud within the South African Social Relief system. Do you think university research is helping in uncovering such issues more effectively than traditional oversight?

Dr. Amanda Tshawe: Absolutely. Academic research can often provide a critical perspective on systemic issues that regulatory bodies may not address promptly. Besides, students bring fresh ideas and approaches to these problems. Their exploration into fraud patterns can serve to prompt more rigorous implementation of oversight measures from authorities. This collaboration between academia and the public sector can enhance our understanding of these issues and lead to more effective solutions.

NewsDirectory3.com: What steps should individuals and organizations take to protect themselves in light of this situation?

Dr. Amanda Tshawe: For individuals, it’s crucial to regularly monitor financial statements and credit reports for any unauthorized activity. They should also activate alerts for unusual transactions. Organizations, particularly those handling sensitive information, must prioritize cybersecurity training for employees, conduct regular audits, and invest in advanced security technologies. Importantly, data protection strategies must evolve continually to address the rapidly changing threat landscape.

NewsDirectory3.com: Thank you for your insights, Dr. Tshawe.

Dr. Amanda Tshawe: Thank you for having me. It is essential to keep these conversations active to foster a culture of cybersecurity awareness in South Africa.

As the investigation into N4aughtySecGroup’s claims continues, the national discourse on cybersecurity and data protection becomes ever more critical. Stay tuned for further updates as more information emerges.

Before releasing customer information from Absa and Standard Bank, N4aughtySecGroup shared screenshots showing transferred funds between TymeBank accounts and an Investec account. TymeBank’s chief technology officer stated that their systems were not compromised and that the attackers likely obtained the data from another source.

A recent investigation by the two students found severe security flaws in the RICA and FICA processes at several banks and a mobile service provider. Sassa’s head, Brenton van Vrede, identified three banks with inadequate FICA implementation. These lapses let attackers steal identities and fraudulently apply for SRD grants.

Despite the issues, TymeBank mentioned that much of the misappropriated funds are stuck in low-functionality accounts. They did not confirm whether these accounts received SRD grant payments. The investigation into these breaches continues as the situation develops.

Share this:

  • Share on Facebook (Opens in new window) Facebook
  • Share on X (Opens in new window) X

Related

Search:

News Directory 3

News Directory 3 catalogs US newspapers, news services, newsstands and digital news outlets across all 50 states. Browse local publishers by city, state, or topic, and follow current headlines linked back to their original sources.

Quick Links

  • Disclaimer
  • Terms and Conditions
  • About Us
  • Advertising Policy
  • Contact Us
  • Cookie Policy
  • Editorial Guidelines
  • Privacy Policy

Browse by State

  • Alabama
  • Alaska
  • Arizona
  • Arkansas
  • California
  • Colorado

© 2026 News Directory 3. All rights reserved.
For contact, advertising, copyright, issues email: office@newsdirectory3.com