South African telecom provider serving 7.7 million confirms data leak following cyberattack
South Africa’s fourth-largest mobile network operator, Cell C, has confirmed that its data was leaked on the dark web following a cyberattack last year.
The hacker group responsible for the attack, RansomHouse, claimed to have breached 2TB of the company’s data. Cell C stated that the hackers gained unauthorized access to certain parts of its IT systems.
While the exact number of individuals affected by the hack remains unclear, the company has acknowledged the compromise of sensitive customer information
🚨 RansomHouse Ransomware Alert 🚨
— FalconFeeds.io (@FalconFeedsio) December 28, 2024
Cell C 🇿🇦
Cell C, a mobile telecommunications company operating in South Africa, has fallen victim to RansomHouse ransomware. The group claims to have obtained 2 TB of the organization's data. pic.twitter.com/t3qfbLrCcX
Cell C, which serves 7.7 million subscribers, did not disclose whether a ransom was demanded or if negotiations took place with the attackers. In a statement issued Wednesday, the company said that the data disclosed by RansomHouse included a range of personal and sensitive information.
Among the types of compromised data were full names, contact details, ID numbers, banking information, driver’s license numbers, medical records and passport details. The company is urging affected individuals to take precautions against phishing and potential identity theft now that the data has been published by the attackers.
Cell C said it is working with international cybersecurity and forensic experts, cooperating with relevant authorities and working closely with stakeholders to provide guidance and findings.
“We understand the seriousness of this development and deeply regret the distress or concern it may cause,” said Cell C CEO Jorge Mendes in a letter to customers. The company has also set up monitoring systems to track the potential misuse of the leaked data.
RansomHouse, a cybercrime group that emerged in March 2022, is known for its extortion tactics. Rather than encrypting data, the group threatens to release all exfiltrated information publicly. The group calls itself as a “force for good” and claims to expose vulnerabilities in companies
In previous incidents, RansomHouse has claimed responsibility for attacks on major organizations, including chip manufacturer Advanced Micro Devices (AMD), supermarket chain Shoprite Group and the Saskatchewan Liquor and Gaming Authority.
Daryna Antoniuk
is a reporter for Recorded Future News based in Ukraine. She writes about cybersecurity startups, cyberattacks in Eastern Europe and the state of the cyberwar between Ukraine and Russia. She previously was a tech reporter for Forbes Ukraine. Her work has also been published at Sifted, The Kyiv Independent and The Kyiv Post.