MTN Hackers Make A Ransom Demand After Last Week’s Attack

MTN Group has revealed a payment demand by hackers to release the data stolen in last week’s cyberattack. The group was hit with a cyberattack that compromised customer data in “certain markets,” the company now claims. The company refuses to share details on how much is being demanded, citing the ongoing investigation.

MTN tries to hack it out

When MTN revealed the attack last week, the brand downplayed the amount of customer data that was compromised, claiming, “We do not have any information to suggest that customers’ accounts and wallets have been directly compromised.” Turns out they’ve got that information now.

The mobile network provider urged customers to change the passwords of any of their MTN accounts and any third-party accounts that are linked to the MTN accounts. Stuff‘s advice is that any possibly-affected customers run their login details through websites like HaveIBeenPwned to check if their information has been leaked. It’s worth noting that these sites aren’t foolproof. Case in point, the hackers may sit on customer data until the network provider fails to pay, at which point that data will be leaked onto the dark web. Until that data is made public, it may be undetectable on sites that specialise in revealing the extent of hacks.

The network has not specified which markets have been compromised, nor the amount demanded, blaming the ongoing investigation. Affected customers will receive detailed communication according to legal and regulatory demands.

Ransomware attacks on South Africa’s telecoms industry appear to be on the rise. This past January, Cell C was hit with a ransomware attack. A group called RansomHouse was identified as the perpetrator by TFI, a cybersecurity research firm.

Source