DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

TransUnion hackers demand R224-million ransom — threaten to leak Absa, FNB, Standard Bank data

Posted on March 18, 2022 by Dissent

MyBroadband follows up on a story initially broken by ITWeb yesterday. They now report:

The South African division of US-based consumer credit bureau TransUnion has suffered a ransomware attack.

In a statement on Thursday, the company acknowledged that a third party had gained access to one of its servers through misuse of an authorised client’s credentials.

“We have received an extortion demand, and it will not be paid,” TransUnion South Africa stated.

The threat actors responsible identified themselves as Brazilians calling themselves N4ughtysecTU. They reportedly told MyBroadband that they had gained access to the personal records of 54 million South African customers totalling more than 4TB of data. MyBroadband contains a list of TransUnion-SA customers whose data was supposedly exfiltrated.

Read more at MyBroadband. It’s not clear if this group has any connection to another Brazilian group, LAPSUS$, which has struck some major companies recently. There is a Telegram account by that name, but no pinned messages or any other content as yet.

Related posts:

  • Madison Square Garden Company Alerts Customers of Payment Card Data Breach
Category: Business SectorHackNon-U.S.

Post navigation

← OCR Cybersecurity Newsletter: Defending Against Common Cyber-Attacks
While questions about RaidForums remain unanswered, BreachForums opens →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.