How it unfolded
On March 24, 2026, Liberty disclosed a significant data breach that exposed the personal information of its customers in South Africa. This incident has raised alarms as it follows a troubling trend of increasing cyber attacks within the country. The breach involved unauthorized third-party access to select data systems, compromising sensitive information such as ID numbers and names.
Liberty, a prominent financial services organization, has stated that it is actively notifying all affected clients regarding the breach. In a communication to clients, the company reassured them that their policies and investments remain secure and that services are fully operational despite the incident. Yuresh Maharaj, a representative from Liberty, emphasized, “Our services remain unaffected, fully operational and available to all our clients, advisers and employees.”
The breach is currently under investigation by Liberty, with the support of cybersecurity experts. This proactive approach aims to understand the extent of the unauthorized access and to prevent future incidents. As part of the investigation, Liberty is also adhering to South Africa’s Protection of Personal Information Act, which mandates organizations to notify the Information Regulator following a data breach.
In light of the breach, Liberty has advised its clients to maintain strong digital hygiene practices. This recommendation comes as South Africa faces a sharp rise in data breaches, with a reported 36% increase in cyber attacks year-on-year. In January alone, South African organizations experienced an average of 2,145 cyber attacks per week, highlighting the growing threat landscape.
This incident is particularly concerning given that Liberty experienced a previous data breach in 2018, raising questions about the effectiveness of their cybersecurity measures over time. The implications of such breaches can be severe, with JSE-listed companies potentially facing a loss of up to 30% of their share value following a cyber attack.
The current state of affairs reflects a broader issue within South Africa’s digital landscape, where organizations are increasingly vulnerable to cyber threats. As Liberty navigates this breach, the company is not only focused on remediation but also on reinforcing its cybersecurity protocols to protect customer data in the future.
As investigations continue, the company is expected to provide further updates on the situation. Meanwhile, clients are urged to remain vigilant and monitor their personal information closely. Details remain unconfirmed regarding the full scope of the breach and the specific measures being implemented to address the vulnerabilities.
