Connect with us

Business

South Africa’s Private Healthcare Hit by Cyber Extortion: What We Know About the Mediclinic Hack

Business

Bad News for Starlink Fans: South Africa’s Launch Faces More Delays Until 2027

Business Elite education

Akademia Opens New Paarl Campus: A Landmark for Afrikaans Higher Education

Business

Why Global Investors Are Flooding Back Into South Africa’s Bond Market

Business

South Africa’s Biggest Bitcoin Scam: Why MTI’s Masterminds Still Walk Free

Business

How Shein and Temu Quietly Stole a Chunk of SA Retail And What It Means for Local Brands

Business

Goodbye Gauteng: Why frustrated South Africans are finding a fresh start in the Northern Cape

Business

Aspen takes on Ozempic as South Africa’s new weight loss jab gets the go-ahead

Business

Sanlam’s investment arm fined R10 million for weak anti-money laundering controls

Business

DStv’s New Era: Canal+ Plans Unified Super App For South African Viewers

Business

Smartfill’s Refill Revolution: The Township Grocery Trend Making Food Up To 50% Cheaper

Business

EU Pumps €11.5bn Into South Africa as Ramaphosa Pushes for Bigger Export Footprint

Business

Farmers Sound Alarm as Foot and Mouth Fears Resurface in South Africa

Business

BVNK in R34.5-Billion Talks with Mastercard and Coinbase

Business

Cheaper Petrol Ahead: South Africa’s Fuel Prices Set for a Welcome Drop

Business

Bank of America Says South Africa’s Rate Cuts Are Likely Over for 2025

Business

Don’t Fall for the “Settlement Notification” Scam: What SARS Wants You to Know

Business

Mantashe: South Africa’s Mining Sector Shows Resilience Amid Global Challenges

Business

SA Sets Sights on Reviving Rail as the Lifeline for People and Goods, Says Minister Creecy

Business

Dawie Roodt Says Nersa Has ‘No Clue’ How to Price South Africa’s Electricity

Business

South Africa Risks a Costly Own Goal as FATF Decision Looms

Business

Murray & Roberts’ Big Win: Cementation Sale Brings Hope Amid Liquidation

Business

SARS Cracks Down On Wealthy South Africans Leaving The Country

Business

Inside Massmart’s Secret Plan: How Makro Could Be Coming to Your Local Mall

Business

FNB Warns South Africans to Stay Alert as Festive Season Fraud Surges

Business

FlySafair Wins Court Reprieve in Landmark Ownership Battle

Business

Amazon and Vodacom Plug Into South Africa’s Largest Solar Power Project

Business

‘A Plan Without Farmers’: Outrage as Government Signs Agricultural Master Plan Behind Producers’ Backs

Business

Temu and Shein Are Reshaping South African Shopping Habits And They’re Not Going Anywhere

Business Motoring

Leapmotor C10: Stellantis brings new Chinese electric brand to South Africa

Business

Discovery partners with Oura to bring smart sleep-tracking rings to South Africa

Business

The Great Power Shift: Why South Africans Are Finally Saying Goodbye to Eskom

Business

South Africa’s Private Healthcare Hit by Cyber Extortion: What We Know About the Mediclinic Hack

Published

5 months ago

on

Sourced: X {https://x.com/Mediclinic/status/1907458732734157079}

It’s becoming harder to ignore the rising tide of cybercrime sweeping through South Africa — and this time, it’s hit a major player in private healthcare. Mediclinic Southern Africa, a household name operating acute care hospitals in South Africa and Namibia, has been targeted by a notorious cyber extortion group called Everest Group.

The Attack Unfolds: What Happened to Mediclinic

Everest Group, a criminal gang operating in the shadows of the dark web, has claimed responsibility for breaching Mediclinic’s systems. They say they managed to extract around 4 gigabytes of data, including sensitive personal information belonging to roughly 1,000 Mediclinic employees. This is no small leak.

From screenshots posted on Everest’s leak site, it looks like the hackers accessed privileged parts of Mediclinic’s human resources systems. That means everything from salary details to disciplinary records — private stuff no one wants exposed. One image even showed a user’s home directory, indicating deep access.

Everest Group has given Mediclinic a tight deadline, demanding negotiations before 2 AM on Sunday, 1 June, to avoid releasing more stolen data.

So far, Mediclinic hasn’t publicly commented on the breach.

Who’s Behind the Everest Group?

The Everest Group isn’t new to the cybercrime scene. Security researchers say the gang was first spotted in late 2020 but flew under the radar because their attacks were slow and methodical.

Recently, however, they’ve stepped up their game — targeting large companies’ HR systems, including Coca-Cola and others.

Experts from Venarix and reports from Dark Reading suggest Everest’s entry points often come through a third-party SAP service provider called INK IT Solutions, based in Australia. That means these hackers exploit weak links in the supply chain to gain access.

Everest Group isn’t just about holding companies hostage themselves — sometimes they sell their initial access to others. This opportunistic strategy makes them unpredictable and dangerous.

South Africa Under Cyber Siege

Mediclinic isn’t the only South African company feeling the heat. Just this week, Adidas South Africa disclosed a breach that exposed customers’ personal details like names, emails, and birth dates. Meanwhile, telecom giants MTN and Cell C have also reported security incidents, with Cell C openly discussing a ransomware attack, and MTN remaining tight-lipped.

Cybersecurity experts warn that attacks like these are expected to rise as criminals worldwide become more aggressive. Charl van der Walt, head of security research at Orange Cyberdefense, recently told MyBroadband that South Africa could see a sharper increase in cybercrime than other countries.

Why Is South Africa More Vulnerable?

Van der Walt points out several factors that put local businesses and institutions at higher risk:

  • Lower digital literacy means phishing and email scams can catch more victims.

  • Weaker finance governance in companies leaves gaps for fraud and business email compromise scams.

  • SIM swap fraud and alternative payment system thefts are becoming more common here.

He also highlights a growing threat from state-aligned hackers and hacktivists, who use cyberattacks as tools for espionage, political influence, or destabilizing critical infrastructure.

South Africa’s geopolitical position makes it a prime target for these complex campaigns, which can have long-term impacts on the country’s stability and economy.

What Should We Take Away?

The Mediclinic hack is a clear reminder that no sector is immune. Healthcare, with its wealth of personal and financial data, is a high-value target for cybercriminals.

Organizations need to tighten their digital defenses and prepare for increasingly sophisticated threats. For individuals, this is a wake-up call to be cautious with personal data and vigilant about cybersecurity in everyday life.

Stay Alert, Stay Safe

Cyberattacks like the Mediclinic breach show how deeply our lives are intertwined with technology — and how vulnerable that connection can be. South Africa’s businesses and citizens must stay informed, demand stronger protections, and adopt safer digital habits.

Keep following updates closely, and if you work in sectors handling sensitive data, now is the time to review your cybersecurity measures. The next attack could be just around the corner.

Related Topics:
Continue Reading