5 key things to know about the MTN cyberattack
- Confirmed breach: MTN has confirmed a cybersecurity attack affecting customer data.
- Immediate action taken: MTN says the breach was contained quickly with help from cybersecurity experts.
- All customers at risk: Even customers not directly affected are urged to update passwords and strengthen account security.
- No requests for passwords: MTN warns customers it will never ask for OTPs, passwords, or personal details via SMS, email, or phone calls.
- Ongoing investigation: A full forensic investigation is underway, with updates to be shared through MTN’s official channels.
MTN South Africa has officially confirmed that it suffered a cybersecurity breach, affecting an undisclosed number of customers.
In a statement issued Friday, the telecommunications giant assured users that “immediate steps were taken to secure our systems” but warned that some personal customer data may have been exposed.
“We have contained the incident and launched a full forensic investigation with the support of leading cybersecurity experts,” MTN said.
While MTN has not yet disclosed the full extent of the breach, the incident has sparked widespread concern among millions of users who rely on the provider for both personal and business communication.
All MTN customers are strongly advised to act immediately to secure their accounts, as the risks may extend beyond those initially identified.
What MTN customers should do now
Security experts recommend that MTN customers take the following immediate steps:
1. Change all passwords immediately.
Even if you have not yet been contacted by MTN, it’s safer to update your account passwords — especially if you reuse the same password across multiple sites.
2. Enable two-factor authentication (2FA).
Where possible, activate two-factor authentication on all MTN-related accounts and any other platforms linked to your phone number or email.
3. Monitor bank accounts and mobile money services.
Be on the lookout for any suspicious activity. MTN specifically advises customers to “review your financial transactions carefully and report any suspicious activity immediately.”
4. Be wary of phishing attempts.
Hackers may attempt to exploit the situation by sending fake MTN alerts. The company cautions:
“MTN will never ask you to provide personal information, passwords, or OTPs via phone, email or SMS.”
5. Update your security software.
Ensure that your phone, computer, and other devices have the latest security patches and antivirus software installed.
6. Stay informed through official MTN channels.
MTN will be providing updates through its website and official social media pages. Customers are urged to “only trust information shared through MTN’s verified communication platforms.”
MTN apologises for the breach
In the same statement, MTN extended an apology to customers, saying:
“We sincerely regret any inconvenience caused and are fully committed to protecting our customers’ information.”
The company added that they are cooperating with law enforcement authorities and the Information Regulator of South Africa to ensure transparency and compliance with the Protection of Personal Information Act (POPIA).
ALSO READ: Standard Bank issues urgent warning on rising card fraud & WhatsApp scams
The growing threat of cyberattacks
Cybersecurity experts have warned that telecommunications companies — and major corporations across sectors — remain prime targets for hackers given the sensitive information they handle daily.
In recent months, several South African companies have faced major breaches. TransUnion, Debt-IN Consultants, and Shoprite all reported attacks that exposed millions of personal records.
Globally, tech giants like Microsoft and Ticketmaster have also fallen victim, highlighting that no organization — regardless of size — is immune.
“As South Africans become increasingly reliant on digital platforms, protecting customer data must be treated as a national priority,” said independent cybersecurity analyst Nomvula Maseko.
The latest breach at MTN is a stark reminder: companies must move beyond reactive security and adopt proactive, future-proof cybersecurity measures.
Failure to learn from the costly lessons of others could leave millions more South Africans vulnerable in the future.
For more breaking news and insights, trust NOWinSA — Stories Shaping South Africa Today.
