Absa e-statements e-mailed to wrong people
A number of Absa clients have complained online that their most recent electronic statements were sent to other people (i.e. CC-ed) who should not have received them.
Absa’s electronic statements are encrypted, using Striata as their cryptographic provider.
The bank has also taken to attaching a simple password-protected PDF file for mobile viewing.
To view either file, users must enter a password, which for Absa customers is always their ID number.
If someone who has your statements is able to get their hands on your ID number they would be able to see whatever private information is contained in those statements.
This includes the list of transactions you made that month, your account number(s), and the address on file with the bank.
Asked how this happened, what is being done to address the problem, and what its clients should do to protect themselves, Absa provided the following statement:
We are aware of a technical fault that affected some of our customers who receive their statements through e-mail over the past weekend. Our technicians are rectifying the problem.
All e-mail statements sent by Absa are encrypted and require the corresponding customer’s ID number in order for them to be opened.
Customers that are concerned that their account may have been compromised can contact the Absa contact centre on 08600 08600 to report any incidents. Alternatively customers can contact our 24-hour Fraud Hotline directly on 0860 557 557 for immediate assistance.
More security news
SA networks snoopable by design
New bugs found in software that caused ‘Heartbleed’ cyber threat
Reset the Net: take back your online privacy
Who sends e-mail securely in SA?
Loading ...