Are the authorities hiding the real consequences of the attack, or did it not happen at all?
The LockBit group claimed responsibility for the attack on the pension fund of South African civil servants, which hampered the organization's work and led to a violation of pension payments.
The South African Government's Pension Agency (GPAA) manages funds under the auspices of the Civil Servants ' Pension Fund (GEPF), the largest pension fund in Africa, serving approximately 1.7 million civil servants and pensioners, as well as their spouses and dependents.
At first, GPAA notified that no data protection violations occurred as a result of the February 16 cyberattack. However, on March 11, LockBit published some GPAA data, and the next day it became known that a preliminary investigation revealed the compromise of some GPAA systems.
A GEPF spokesperson told Recorded Future News that the GPAA is investigating the alleged data leak and its impact on GEPF, confirming that measures have been taken to prevent unauthorized access to systems, including shutting down and isolating affected sections of the network. The GPAA also confirmed that the pension payment system was not affected.
A GEPF spokesperson said that they are working with the GPAA and the South African National Treasury to determine the authenticity and impact of the alleged data leak, promising to provide more information at a later date.
Earlier, local media reported that since February 12, pension payments to recipients have not been made, and the organization's offices were closed from February 16 to 21 due to"attempts of unauthorized access to the organization's systems." After these statements, services in the regional offices were restored. GEPF assured employees and pension recipients of the security of benefits and personal information, claiming that the administration system was not compromised.
The LockBit group claimed responsibility for the attack on the pension fund of South African civil servants, which hampered the organization's work and led to a violation of pension payments.
The South African Government's Pension Agency (GPAA) manages funds under the auspices of the Civil Servants ' Pension Fund (GEPF), the largest pension fund in Africa, serving approximately 1.7 million civil servants and pensioners, as well as their spouses and dependents.
At first, GPAA notified that no data protection violations occurred as a result of the February 16 cyberattack. However, on March 11, LockBit published some GPAA data, and the next day it became known that a preliminary investigation revealed the compromise of some GPAA systems.
A GEPF spokesperson told Recorded Future News that the GPAA is investigating the alleged data leak and its impact on GEPF, confirming that measures have been taken to prevent unauthorized access to systems, including shutting down and isolating affected sections of the network. The GPAA also confirmed that the pension payment system was not affected.
A GEPF spokesperson said that they are working with the GPAA and the South African National Treasury to determine the authenticity and impact of the alleged data leak, promising to provide more information at a later date.
Earlier, local media reported that since February 12, pension payments to recipients have not been made, and the organization's offices were closed from February 16 to 21 due to"attempts of unauthorized access to the organization's systems." After these statements, services in the regional offices were restored. GEPF assured employees and pension recipients of the security of benefits and personal information, claiming that the administration system was not compromised.
