Experian South Africa fell for spear-phishing attack, suffered massive data breach

Credit rating agency Experian South Africa fell for a spear-phishing attack this week when a fraudster tricked the agency into sharing the personal information and other data of 24 million South Africans and 793,749 business entities.

In a press release carefully worded to play down the impact of the data security incident, Experian South Africa said on Wednesday that it was able to curtail a data incident by catching a fraduster who impersonated a legitimate client to request certain information from the agency which is publicly available.