South Africa’s Information Regulator has initiated an independent inquiry into the Companies and Intellectual Property Commission (CIPC) following a security breach of their systems, as announced in a recent media briefing.
The regulator revealed that it received reports suggesting that hackers were still active within the CIPC IT environment, implying that the systems remain compromised. The regulator would also investigate whether the CIPC’s business model aids in the trading of personal data which they hold, tying into CIPC’s technical and organisational protections surrounding personal information.
The CIPC, which operates under the Department of Trade, Industry, and Competition, oversees registration related to companies, co-operatives, and intellectual properties.
On February 29, 2024, the CIPC disclosed an “attempted” security breach, stating that both client and employee personal data had been accessed. This breached data included the names and addresses of registered clients.
Despite assurances from the CIPC about investigating and revealing the extent of this data exposure soon, a group claiming responsibility for the breach informed My Broadband that they had accessed the CIPC system as far back as 2021, exposing longstanding vulnerabilities within the system.
The assailants assert they have procured the complete source code of Sword South Africa’s systems, which they targeted. They reportedly used a vulnerability in a system the CIPC created, facilitating the occurrence of the incident.
The group is currently demanding a ransom of $100,000 (R1.9 million) to erase all stolen data, insisting they still have access despite CIPC’s attempts to revoke it.
In another news, the regulator shared an update on the data breach that happened at TransUnion, a South African credit bureau, in March 2022. After conducting an assessment, the regulator accused TransUnion of breaching the necessary conditions for the lawful handling of personal information.
As a result, it served TransUnion with an enforcement notice that calls for improved data management and security measures. TransUnion is required to provide evidence of complying with these changes by May 26, 2024, following the enforcement notice.
1 Comment
Pingback: Cybersecurity breach at South African lab service jeopardizes national healthcare - Innovation Village | Technology, Product Reviews, Business