Debt-IN Consultants (Pty) Ltd Data Breach
Debt-IN Consultants (Pty) Ltd, an external debt collector, has announced that a ransomware attack by cyber criminals has resulted in a significant data breach of consumer and employee personal information.
It is suspected that consumer and personal information of more than 1.4 million South Africans was illegally accessed from Debt-IN servers in April this year. This breach only came to light in the week of the 20th September 2021 together with the discovery that confidential consumer data and voice recordings of calls between Debt-IN debt recovery agents and financial services customers had been compromised.
Debt-IN is working closely with the regulator, law enforcement agencies and other cyber-security partners to rapidly gather facts, resolve the issue and provide ongoing information to clients. Debt-In and MBDLC has taken immediate and appropriate actions to reinforce existing security measures to mitigate any further potential impacts of the breach. Debt-IN is no longer a service provider to MBDLC.
While the investigations are ongoing and the analysis subject to change, the findings to date show there has been no further breach and enhanced data protection measures remain securely in place. In the event that you notice any suspicious activity pertaining to your personal information, immediately contact the local authorities.
Furthermore, only a small portion of the MBDLC data was effected. We are taking this matter extremely serious and are committed to doing all that we can to protect and secure clients’ information and are exercising our legislative obligations in line with data privacy and protection guidelines. We reiterate that any concerned customers and clients can direct their queries to 0115604705 or email: [email protected].