Cyber Incident Victim: Wesizwe Platinum Limited

On or around June 3, 2016, members of the Anonymous hacker collective publicly leaked a portion of a database belonging to Wesizwe, a South African platinum mining corporation. The attackers extracted and released a table from the company's content management system (CMS) containing credentials for 122 user accounts. Each exposed record included usernames, full names, email addresses, SHA1-hashed password strings, account creation dates, and last login timestamps. This limited data dump represented only a fraction of the compromised database. Softpedia journalists attempted to notify Wesizwe through multiple channels but encountered a malfunctioning contact form and received no response to telephone inquiries. The breach formed part of Anonymous' #OpAfrica campaign, which sought to expose alleged child labor abuses and force economic reforms across multiple African nations through unauthorized data disclosures.

The Wesizwe intrusion occurred during the second phase of #OpAfrica, initiated in May 2016 following an initial campaign wave in February targeting eight nations including South Africa. Anonymous expanded their operations to include Kenya, Burundi, and six additional countries during this second stage. Prior to the Wesizwe leak, the collective had disseminated 1TB of documents from Kenya's Ministry of Foreign Affairs and employee records from Kenya's National Oil Corporation. While the mining company breach exposed sensitive authentication data, no evidence suggested immediate exploitation of the credentials or additional system compromises. The campaign's broader pattern of publishing stolen information aimed to generate public awareness rather than directly disrupt operations, though the effectiveness of these leaks in driving policy changes remained unverified. Wesizwe's public response to the incident was not documented in available reporting.