The recent cyberattack on SAA highlights the importance and need to protect the country’s digital infrastructure, creating further impetus for the state to create a robust national cybersecurity strategy.
SAA, the latest in a string of government-linked entities to be breached by cybercriminals, said on Wednesday a preliminary report indicated that an attack, reported earlier in the month, primarily targeted its website, mobile application and certain internal communication systems.
This comes as the government steps up its digital transformation investment, announcing a new national road map this week that increases the vulnerability of government systems.
The national airline confirmed a week ago that a cyber breach of its systems on May 3 disabled a number of its internal and customer-facing digital structures, describing it as a “significant cyber incident”.
Core business management information systems were not affected, SAA said in a statement.
“While the attack caused temporary disruptions to our website, flight operations, including scheduling, distribution, reservation, online and airport check-in, bag drop, baggage tracking and boarding systems, remained stable and functional throughout the incident. Additionally, there was no impact on our Voyager loyalty programme system, allowing members to continue earning and redeeming miles as usual.”
The incident adds to the growing number of cyberattacks on government-linked entities.
The SA Bureau of Standards has experienced three cyberattacks in just five years. It was disclosed in February that core systems remained encrypted and inaccessible at the service after the latest attack in November 2024.
Cybersecurity firm Check Point Software Technologies recently highlighted that online attacks on digital infrastructure, systems, organisations and consumers were costing SA 1% of its GDP.
The government will be especially keen to mitigate this risk.
Earlier this week, communications & digital technologies minister Solly Malatsi outlined a plan to push the government’s use of digital platforms and technology, anchoring the country’s new digital transformation road map.
If achieved, the new system would centralise many of the state’s functions. A potential risk introduced is an ability to access more data, regardless of which points of government or departments are breached.
Malatsi’s department has been tasked with developing a comprehensive cybersecurity strategy “that protects all users accessing digital government products/services” by the fourth quarter of 2027, with a national cybersecurity authority meant to be established a year later, as part of the road map.
The government aims to firm up this National Cybersecurity Policy Framework, which it said played a crucial role in safeguarding government systems.
SAA said an expert digital forensic investigation was under way to determine the incident’s “full scope, root cause and if any personal data, such as passport, ID and credit card information was accessed or exfiltrated”.
“Presently, there is no evidence of compromised customer data or SAA’s financial management systems. Should any evidence of data compromise be found, we will promptly notify affected individuals and corporations directly, in line with regulatory obligations.”
With SAA infrastructure being classified as a national key point, the State Security Agency is involved in the investigation.
Would you like to comment on this article?
Sign up (it's quick and free) or sign in now.
Please read our Comment Policy before commenting.