Cell C Confirms Data Leak by RansomHouse, Launches Stakeholder Support Hub

Cell C is aware that data compromised in the recent cybersecurity incident has been unlawfully disclosed by RansomHouse, the threat actor claiming responsibility. This follows a previously reported incident involving unauthorised access to unstructured data in some parts of our IT environment.

We deeply regret this development and the concern it may cause among our employees, customers, partners, and stakeholders at large.

– Excerpt from Cell C’s Statement

As part of our commitment to safeguarding the interests of our stakeholders and full transparency, Cell C has set up an Information Hub, www.worldofcellc.co.za/information-hub , where stakeholders can access tips on protecting themselves against cybercrime, support and actions to protect against fraudulent activity, as well as frequently asked questions on the cyber incident.

Since detecting the incident, Cell C has taken decisive steps to contain the threat, further secure its systems, and mitigate impact. These include:

• Engaging leading international cybersecurity and forensic experts to support containment and response
• Notifying and cooperating with the Information Regulator and relevant authorities
• Communicating with affected stakeholders to provide findings and guidance

Cell C has engaged its experts to monitor potential misuse of the data and urges all stakeholders to remain vigilant against fraud, phishing, and identity theft.

Resources for fraud prevention—including SAFPS registration and cybersecurity best practices—have been included in all communications and are available on our website.

Cell C is committed to supporting affected stakeholders throughout this process

We understand the anxiety this may cause and encourage stakeholders to apply for Protective Registration with the South African Fraud Prevention Services (SAFPS) – a free service that alerts credit providers to take extra care when verifying your identity, helping to protect against potentially fraudulent activity.

How to apply for Protective Registration (PR)

• Apply online: https://www.safps.org.za/ 
• Apply via Email: Download the PR Application Form from https://www.safps.org.za/  and email it to protection@safps.org.za   with the necessary supporting documents (certified copy of your ID or passport, proof of address, and completed application form).
• SAFPS Call-Back: You can also submit your details through the SAFPS website https://www.safps.org.za/ , and an agent will contact you to begin the process.

After applying, SAFPS will issue a Protective Registration reference number and a Victim of Impersonation letter within 48 hours. This letter will help future credit providers verify your identity and protect against fraud.

Customers are reminded that SAFPS, Cell C, and legitimate financial institutions, will never ask you for your password, PIN, or OTP.

For more information on how to protect yourself, please click here www.worldofcellc.co.za/information-hub .

We continue to work closely with relevant authorities and security specialists to monitor for any further developments and to reinforce the integrity of our systems.

Cell C remains committed to transparency, accountability, and protecting the interests of the people and partners we serve.

– Excerpt from Cell C’s Statement