2 min read

South Africa"s PostBank is Replacing 12 Million Bank Cards After Major Security Breach

Alina BÎZGĂ

June 15, 2020

South Africa"s PostBank is Replacing 12 Million Bank Cards After Major Security Breach

South Africa”s Postbank has suffered a major data breach, forcing the financial institution to replace 12 million bankcards after rogue employees stole its 36-digit master key.

Data breaches have become a day-to-day struggle for businesses and organizations across the world and, from time to time, the bad actors lurk within the organization itself. According to reports, in December 2018, the culprits covertly printed out the bank”s master key in plain text, stealing approximately $3.35 million from beneficiaries who receive social grants every month.

You can also check if your private data has been exposed online! Use Bitdefender”s Digital Identity Protection tool to see where you stand at the moment and what the internet knows about you.

The Sunday Times, which obtained a forensic report completed in July 2019, provided a detailed description of the events. It appears that the master key was exposed in July 2018 during a data center move. It was compromised “after being stored in clear text on one laptop (at a minimum) and remains compromised to the present day,” the report said.

The attackers could have also accessed the bank”s systems, editing account balances, and resetting or filling up Postbank cards. By December 2019, bank officials registered around 25,000 fraudulent transactions in their system. Between 8 million and 10 million cardholders were affected and, besides stealing funds from their accounts, the bad actors could have also exfiltrated the personal information of an additional 1 million customers.

The cost of replacing the affected cards is $58.7 million, and bank officials have yet to confirm if grant beneficiaries who were affected by the fraudulent acts will be reimbursed for their loses. “It appears that the significance of magnitude of this card breach may have been comprehended by Postbank operations and IT senior management,” former chief risk officer Benjamin April said in a January report. The Sassa master key compromise is a significant failure for the Postbank and also for the national payment system.”

In September 2019, South Africa”s Reserve Bank provided an 18-month deadline for Postbank to replace the 12 million compromised cards. The bank also prohibited contactless offline transactions for cardholders within the same timeframe.

tags


Author



Right now

Top posts

Ultimate Privacy Guide for Your Facebook Account

Ultimate Privacy Guide for Your Facebook Account

August 31, 2021

6 min read
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

August 27, 2021

2 min read
Your Netflix Account May Be on Sale on Darkweb. Protect It

Your Netflix Account May Be on Sale on Darkweb. Protect It

August 13, 2021

3 min read
E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Epik Data Breach Affects 15 Million Customer and Non-Costumers. Are You a Victim? Epik Data Breach Affects 15 Million Customer and Non-Costumers. Are You a Victim?
Alina BÎZGĂ

September 22, 2021

2 min read
To Call or Not To Call: Identity Thieves Prey On Credit Union Members Account Data and Money in Ongoing Spam Campaign To Call or Not To Call: Identity Thieves Prey On Credit Union Members Account Data and Money in Ongoing Spam Campaign
Alina BÎZGĂ

September 21, 2021

3 min read
The difference between a VPN and Incognito Mode. How do they protect your privacy? The difference between a VPN and Incognito Mode. How do they protect your privacy?
Cristina POPOV

September 20, 2021

2 min read