Statistics South Africa (Stats SA) has confirmed it was the target of a ransomware attack, with cybercriminals claiming to have stolen more than 450,000 files.
The breach is understood to have affected a human resources database used for online job applications, raising concerns about the security of personal information submitted by applicants.
Stats SA says it is working closely with authorities and will notify the relevant regulator as part of its response to the incident. The group behind the attack, identified as XP95 ransomware group, has reportedly issued a ransom demand with a deadline of April 20.
Statistician-General Risenga Maluleke said the compromised data primarily relates to HR records collected through the organisation’s e-recruitment platform.
“What was taken from us relates mainly to HR information. We have an e-recruitment facility that people can access online from anywhere,” Maluleke said.
He warned that vulnerabilities may have arisen from how users accessed the system, including through unsecured devices or networks.
“This breach could have entered through platforms used by applicants, such as internet cafés or mobile devices that may not be protected. In this regard, it is their personal information that is at risk, particularly in terms of identity theft,” he added.
Authorities are continuing investigations into the incident as concerns grow over data security and the potential misuse of compromised personal information.