Major credit bureau slapped with enforcement notice for data breach in South Africa

Jan Vermeulen reports:

The Information Regulator has slapped credit bureau TransUnion with an enforcement notice following a data breach on 18 March 2022.

N4ugthySecTU, the group that claimed responsibility for the attack, alleged that they exfiltrated 4TB of data from one of TransUnion’s databases, including the records of 54 million South Africans.

However, the bureau said far fewer people were impacted.

Initially, TransUnion stated that “at least” 3 million of its South African customers’ details were affected. A further 6 million ID numbers were exposed but not linked to other personal information.

TransUnion revised these numbers in June 2022.

Read more at MyBroadband.za for the findings and conditions the regulator has imposed.

Hotel and Casino near Las Vegas Strip suffers data breach, documents say
Bombay High Court Orders Department of Telecommunications to Block Medusa Accounts After Generali Insurance Data Breach
Cyber-Attack On Bectu’s Parent Union Sparks UK National Security Concerns
Attorney General James Announces Settlement with Wojeski & Company Accounting Firm
Romanian prisoner hacks prison IT system in plot made for a Netflix movie
Hackers Say They Have Personal Data of Thousands of NSA and Other Government Officials

Related: