Categories: Business

Investigations Ongoing as Standard Bank Expands Alerts Over Data Breach

Investigations are ongoing into a data breach at Standard Bank Group, after the lender confirmed that more customer information was accessed and shared online. The bank said its internal review is still in progress, and early findings show that additional personal data, including more credit card numbers, was exposed.

The incident was first disclosed on March 23, 2026, following reports that a threat actor identified as “ROOTBOY” gained unauthorised access to the bank and Liberty systems on February 27. As investigations continue, the scope of the breach has widened to include credit card numbers and expiry dates, alongside personal details such as names, ID numbers, phone numbers, and physical addresses. In some instances, passport and driver’s licence details were also affected.

Standard Bank has maintained that there is no indication so far that the stolen data has been misused, even as the scale of the breach continues to raise concern. The attacker has claimed to have extracted 1.2 terabytes of data after remaining undetected in internal systems for weeks, and has reportedly been releasing the information in stages since April 14 after demanding R1.2 million in bitcoin.

The ongoing investigation is also examining claims that the attacker moved across multiple systems, including Microsoft SharePoint, OneDrive, Power Apps, Microsoft platforms, and Oracle SQL databases, and accessed internal documents as well as employee information. The bank noted that external experts are supporting the investigation, while the matter has been formally reported to regulators, including the Information Regulator.

As the probe continues, Standard Bank has expanded its customer notifications and urged users to take precautionary steps. Customers have been advised not to share PINs, passwords, or one-time passwords, to update their banking and social media credentials, enable biometric authentication where possible, and report any suspicious activity immediately.

Branislav Opudo

Recent Posts

4 Must-Visit Spots in and Around Nairobi

Paradise Lost, KiambuJust 20 minutes from Nairobi’s CBD, Paradise Lost in Kiambu feels like stepping…

1 hour ago

Google, Idris Elba Launch AI Programme to Support Nearly 100,000 African Creators

Google has partnered with British actor and entrepreneur Idris Elbau to expand access to artificial…

2 hours ago

Safaricom’s Share Incentive Plan Rewards Top Executives as Stock Value Surges

Safaricom's rising share price has significantly boosted the value of its employee share incentive programme.…

2 hours ago

Ol Kalou By-Election Violence Sparks Nationwide Alarm Over Rising Political Tensions

Severe political violence erupted during the Ol Kalou parliamentary by-election campaigns in Nyandarua County this…

11 hours ago

Kenya Allocates KSh7 Billion For Nithi Bridge Realignment To Boost Safety

Deputy President Kithure Kindiki announced that the national government has secured KSh7 billion to completely…

11 hours ago

Kenya’s Foreign Digital Tax Revenue Nearly Doubles After Tax Reforms

Kenya recorded a sharp increase in tax revenue from foreign digital companies in the 2025/26…

3 days ago