Connect with us

Business

Microsoft SharePoint Cyberattack Shakes South African Institutions

Business

From Domestic Worker to Entrepreneur: How Yaya’s Rusks is Challenging OUMA in South Africa

Business

The R1 Deal That Sold Out Durban: Why Sapref’s Sale Feels Like Betrayal

Business

Steel Tariff Shake-Up: Why South Africa’s Industry is Anxious About Itac’s Proposal

Business

South African Salaries Take a Hammer Blow as Debt and Inflation Squeeze Households

Business

Old Mutual’s OM Bank Officially Launches to Take on Capitec in South Africa

Business

MTN Tops Vodacom in South Africa’s 2025 Voice Quality Rankings

Business

Capitec Tops the Charts as Africa’s Most Valuable Bank in 2025

Business

Why Private Security is Quietly Taking Over in South Africa

Business

Jannie Mouton’s R7.2 Billion Curro Deal Could Be South Africa’s Biggest Gift to Education

Business Tech

South Africa’s Fibre Leap: DFA Breaks World Record with 1.6 Tbps on a Single Wavelength

Business

From Negotiator to Tycoon: How Ramaphosa’s Business Web Forged His Billion-Rand Legacy

Business

IRR Calls for Bold Reforms: Scrap B-BBEE and Labour Laws to Fix South Africa’s Jobs Crisis

Business

Is Amazon About to Shake Up South Africa’s Grocery Game?

Business

Will South Africa’s First Private Grid Tender Leave Local Industry Behind?

Business

New Ship-to-Ship Fuel Rules Stir Hope and Fear in Algoa Bay

Business

Interest rates in South Africa: Why the Reserve Bank is holding steady

Business

A Second Chance for Importers: What SA’s New Customs and Excise Disclosure Relief Really Means

Business

The Airtime Tax Tangle: What South Africa’s VAT Changes Mean for Your Mobile Wallet

Business

Acsa Soars With Billion Rand Profit, Signalling South Africa’s Travel Rebound

Business

Why the SAPS Corruption Commission Matters, And Why Its Delay Worries South Africans

Business

Tupperware Goes Glass: Meet the New ‘Voila’ Sustainable Range

Business

From Tariffs to Tastings: Why Wine Tourism Could Be South Africa’s Saving Grace

Business

Africa’s Mineral Future: Can Local Giants Take Control of Critical Resources?

Business

Acsa Doubles Profits to R1.8bn While Fortifying Fuel Security at SA Airports

Business

Good News at the Pumps: Petrol and Diesel Prices to Drop in September

Business

Discovery’s New Retirement Plan Tackles South Africa’s Longevity and Healthcare Cost Crisis

Business

SARS Turns Its Gaze to South African Influencers: Free Meals, Brand Deals Now Under Tax Spotlight

Business Tech

Africa’s 5G Reality Check: From Big Promises to Slower Progress

Business

Shein Finally Shows Customs Fees Upfront for South African Shoppers

Business

Ramaphosa Calls for Calm as US Tariffs Threaten South African Jobs

Business News

New law set to change how Uber and Bolt operate in South Africa

Business

Microsoft SharePoint Cyberattack Shakes South African Institutions

Published

1 month ago

on

Sourced: X {https://x.com/MarioNawfal/status/1948327297842344210}

Hackers hit Treasury, car manufacturer, and university as South Africa becomes collateral in global cyber war

South Africa has become the latest casualty in a sweeping global cyberattack that exploited a serious flaw in Microsoft’s SharePoint servers, leaving government departments, local authorities, and even academic institutions exposed.

The National Treasury confirmed this week that malware was detected on its Infrastructure Reporting Model website, a clear sign that not even the nation’s core financial systems are off-limits to today’s digital intruders. While the Treasury says there have been no disruptions to operations, the breach is part of a wider crisis affecting at least 400 organisations globally.

A Broader Breach With Local Impact

According to Dutch cybersecurity firm Eye Security, which first flagged the attack last week, victims include a diverse list: from a South African car manufacturer and a university to multiple local-government departments and a federal agency. The firm declined to name the affected organisations, citing privacy concerns, but confirmed that two additional, still-unidentified South African entities have also been compromised.

Internationally, the United States accounts for the majority of the breaches, but South Africa joins a list of other affected nations such as Mauritius, Jordan, and the Netherlands.

The SharePoint Flaw: What Went Wrong?

At the heart of the attack is a vulnerability in on-premise Microsoft SharePoint servers, widely used across South Africa for internal document collaboration, particularly by government departments that prioritise data control and self-hosting for security reasons.

Ironically, this setup, once considered more secure, has become the primary target. Microsoft has clarified that only on-premise users are affected, not clients who rely on their cloud-based SharePoint services.

While Microsoft has yet to release a formal statement, the breach underscores a growing dilemma for institutions relying on legacy IT infrastructure.

A Wake-Up Call for Public and Private Sectors

In a country already grappling with digital transformation and IT skill shortages, this breach is more than just a technical mishap, it’s a wake-up call. Local Twitter (X) users expressed frustration at how outdated public systems have left the nation vulnerable. “Why are we still using old SharePoint servers in 2025?” one user asked. “The cyberthreats are evolving, but our systems aren’t.”

Cybersecurity analysts warn that the full scope of the breach may still be unfolding. Given how many South African entities use SharePoint for everything from procurement to internal audits, this incident could expose sensitive government and corporate data.

A History of Warning Signs

This isn’t the first time South Africa has found itself under digital siege. In recent years, entities like Transnet and the Department of Justice have also suffered high-profile cyberattacks. Despite those alarms, slow migration to more secure cloud systems and a lack of dedicated cyber defence strategies have left gaps wide open.

The fact that the Treasury itself, a critical node in national financial oversight was infiltrated, albeit mildly, speaks volumes.

Next Steps and Urgency

The details of the attack have been shared with South Africa’s Computer Security Incident Response Team (CSIRT), which is now coordinating an investigation alongside Microsoft. There’s no word yet on whether data was exfiltrated or corrupted.

Meanwhile, cybersecurity experts are urging institutions still running on-premise SharePoint servers to apply available patches immediately, reassess their infrastructure, and consider transitioning to more secure cloud environments.

What This Means for SA

As cybercrime becomes more globalised and sophisticated, South Africa is increasingly being caught in the crossfire. This latest incident isn’t just about a few infected servers. It’s about the urgent need for digital modernisation, proper risk assessments, and investment in cybersecurity talent, especially in the public sector.

If institutions as central as the Treasury can be breached, the question isn’t if another attack will happen, it’s when, and how prepared we’ll be next time.

{Source: Business Insider Africa}

Follow Joburg ETC on Facebook, Twitter , TikTok and Instagram

For more News in Johannesburg, visit joburgetc.com

Related Topics:
Continue Reading