Postbank loses over R18-million to cybercrime attacks in three months

Most of the money stolen came from the Sassa beneficiary grant payment system, says CEO.
The South African Postbank is to spend R400-million over the next three years to upgrade and modernise its IT systems.
This follows the state-owned entity losing more than R18-million over a three-month period to cybercrime attacks.
On Tuesday, Postbank CEO Lucas Ndala told Parliament’s portfolio committee on communications that it had “a number of cyber fraud incidents — most of them relating to the Sassa beneficiary grant payment system”.
Ndala said the Postbank IT system had been flagged by the Auditor General for having “control weaknesses”.
“There has been a concerted effort to address these system deficiencies since the grant system was ceded to Postbank in 2021. A lot of these weaknesses come from the system itself because it came with a number of flaws that needed to be addressed over time,” Ndala said.
In response to DA MP Dianne Kohler Barnard on the total cost of the IT update, Ndala said, “The total cost approved is just around R400-million. This will be funded from Postbank resources. The modernisation will be over a three-year period.”
He said the accounts of 141 grant beneficiaries were hit in a cyber attack in August. The state-owned entity lost R5.8-million in this incident.
The second incident happened in September, also involving accounts receiving social grants on behalf of children. Ndala said the Postbank’s Fraud Risk Team discovered that some of these accounts were fraudulent, and, as a preventative measure, these were blocked.
Visit Daily Maverick’s home page for more news, analysis and investigations
However, “the blocking was not done properly,” said Ndala. “Anyone could unblock them within our branch network,” he said. Postbank lost about R4-million in this incident.
In October 2022, Ndala said the Postbank banking system suffered another cybercrime attack and lost about R9-million.
Earlier this year it was revealed that the Postbank had suffered a loss of at least R90-million in cybercrime attacks in October 2021.
Ndala told MPs that Postbank is on the same IT network as the South African Post Office (Sapo). One of the requirements when Postbank applied for a banking licence from the SA Reserve Bank, was that it needed its own “stand-alone IT environment that cannot be impacted by the risks from Sapo”.
Ndala said the report on a forensic audit into the recent cybercrime incidents is expected to be released in December, while the second part of the report is expected in February 2023.
Nonkqubela ...
1 Dec 2022 7AM English South Africa News · Daily News

Other recent episodes

Health in 2022 – a review of the year in under 1,000 words

An HIV prevention injection approved in South Africa, several promising developments on the tuberculosis front, the National Health Insurance Bill grinding its way through Parliament, no end in sight to healthcare worker shortages, another dire year for health in Gauteng – Spotlight wraps up 2022 in under 1,000 words. This…
19 Dec 2022 7AM 7 min

Ten ways to avoid falling victim to an antibiotic-resistant bacterial infection

It’s time to take notice of antibiotic resistance in bacteria. It is not someone else’s problem. It affects you, whether or not you are the one taking antibiotics. The most common question I get from interviewers and the public when discussing the public health crisis around increasing rates of bacterial…
19 Dec 2022 5AM 19 min

South Africa to receive donation of new child-friendly drug-resistant TB medicines

The Department of Health is set to receive a donation of child-friendly formulations of several medicines used to treat drug-resistant tuberculosis. It is expected that over the next year the donation will spare roughly 200 children the substantial difficulties associated with taking DR-TB medicines meant for adults. The donations form…
19 Dec 2022 5AM 4 min

How to feed your baby – starting solids need not be scary

Starting the journey from breastmilk or formula to solid foods can be intimidating for many parents, but there is much helpful information and advice out there, so it need not be. The time when parents would begin to feed their babies solid foods (solids) has had a somewhat wobbly historical…
18 Dec 2022 11AM 12 min