Image created by AI

South African Banks and Credit Bureaus Address Hacking Allegations

Published November 06, 2024
1 months ago

In a robust challenge to the integrity of South Africa's banking security, a hacking group named N4aughtySecGroup alleged widescale infiltration into the country's financial framework, claiming the theft of R175 million from the South African Social Security Agency (Sassa). The group purported to have penetrated the systems of at least five South African banks, exploiting vulnerabilities at credit bureaus such as XDS, TransUnion, and Experian.





The claims, serious in nature, prompted investigative inquiries from MyBroadband journalists, whose personal financial details were disclosed by the hackers as evidence of the breach. The banks mentioned—Absa, Discovery Bank, FNB, Nedbank, and TymeBank—faced immediate scrutiny as to the security of their systems and the safety of their customers' data.


FNB's response, articulated by FirstRand cyber risk head Kovelin Naidoo, underscored the absence of any detected breaches and highlighted the banks' continuous monitoring of fraudulent activity. The bank employs a multi-layered security approach designed to preemptively identify and counteract threats. Assurance to clients and stakeholders alike was bolstered by FNB's ongoing collaboration with industry bodies such as Sabric and Basa, coupled with a preparedness to engage Sassa to fortify against potential risks.


Nedbank echoed this sentiment of secure operations, reaffirming the safety of client information and urging adherence to recognized safe banking practices. With customer deposits intact, the bank maintained its stance on having robust detection systems for any anomalies.


Contrasting the hackers' claims, TymeBank firmly rejected the idea of hacking within its systems. An internal investigation revealed discrepancies between the hackers' data and the bank's records, leading to the conclusion that the supposed breach originated from a separate entity. The bank places great emphasis on customer data security, implementing sophisticated measures to obstruct fraudulent account access and proactively engaging with industry and government bodies to diminish fraud.


Absa's statement came post-publication, underscoring a 'defense in depth' strategy and echoing a lack of detected breaches or suspicious activity. The bank stays vigilant, working closely with local and international counterparts to curtail security risks.


The credit bureaus named by the hackers also addressed the hacking allegations. XDS, through Jennifer Barkhuizen at MIE, assured stakeholders of their commitment to data security despite the group's claims. After a thorough examination, the bureau found no evidence of a breach. TransUnion and Experian likewise dispelled such concerns, emphasizing their dedication to securing the data they hold and adherence to data security best practices.


In the era of digital banking and cyber threats, the collective stance of South African banks and credit bureaus against these hacking claims is one that reflects an industry acutely aware of the importance of cybersecurity and actively engaged in safeguarding against perpetually evolving threats.


Leave a Comment

Rate this article:

Please enter email address.
Looks good!
Please enter your name.
Looks good!
Please enter a message.
Looks good!
Please check re-captcha.
Looks good!
Leave the first review