ABSA experienced a data breach after an employee unlawfully leaked client information to a number of external parties.
In a letter sent to a portion of affected customers, clients were alerted that the information includes their identity number, description of a financed vehicle, address and contact details.
However, the bank’s spokesperson said based on their investigation, it is believed the leaked data was intended for telemarketing purposes.
When the leak was discovered by the bank’s security team, ABSA obtained court orders for search and seizure operations at “various premises”, and all devices containing the data have been found and subsequently destroyed.
It is alleged that Absa has brought criminal charges against the employee, a “requisite consequence management” was launched as response to the data leak.