Statistics South Africa recently confirmed that a major ransomware attack compromised the personal information of numerous individuals seeking employment through their official channels. The breach, attributed to a group known as XP95, resulted in the theft of over 450,000 files from a database used to manage online job applications.

Statistics South Africa has officially acknowledged a serious security breach involving its digital infrastructure. The agency revealed that its e-recruitment platform was the primary target of a sophisticated ransomware attack. This system is a vital tool for the public, as it allows citizens to apply for government positions using various internet-connected devices.

The group claiming responsibility for the cyberattack identifies itself as XP95. Reports indicate that the hackers successfully infiltrated the human resources database to extract a massive amount of sensitive information. Initial assessments suggest that more than 450,000 individual files were stolen during the incident, raising significant concerns regarding the privacy of those stored in the system.

Data security experts have noted that the targeted database was specifically designed to handle the influx of job applications from across the country. Because the platform collected personal details necessary for employment verification, the stolen files likely contain highly private information. The breach represents a significant blow to the agency's efforts to digitize and streamline the hiring process for public service roles.

In a formal statement regarding the situation, the agency clarified that the intrusion was focused on the e-recruitment portal rather than its broader statistical data collection systems. Despite this distinction, the scale of the file theft highlights a major vulnerability in how applicant data was being protected. The agency is now tasked with managing the fallout of the leaked information and addressing the security gaps that allowed the ransomware group to gain access.

The incident serves as a stark reminder of the growing threats facing government institutions in the digital age. As Statistics South Africa works to recover from the attack, the focus remains on the hundreds of thousands of jobseekers whose personal records are now in the hands of cybercriminals. Efforts are reportedly underway to investigate the full extent of the damage and to bolster the security of the recruitment platform to prevent future compromises.

Source: https://www.capetownetc.com/news/stats-sa-suffers-ransomware-attack-exposing-jobseekers-personal-data/