Cyber Incident Victim: Midwest Transplant Network
Date:
Apr 2025
Location:
South Africa
Summary
The supplied sources do not detail any cybersecurity event affecting Midwest Transplant Network. Instead they describe a security incident reported by MTN Group involving unauthorized access to personal information of some customers in certain markets, with the company stating that its core network, billing systems and financial services infrastructure remain secure and fully operational, that it has found no evidence of compromise to critical infrastructure or core platforms, that it has informed the South African Police Service and the Hawks, and that it is in the process of notifying affected customers in compliance with local legal and regulatory obligations.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On 24 April 2025 MTN Group disclosed that it had experienced a cybersecurity incident that resulted in unauthorised access to personal information of some of its customers in certain markets. The company stated that its investigation had found no evidence that any critical infrastructure had been compromised. MTN emphasized that its core network, billing systems and financial services infrastructure remained secure and fully operational. An unknown third‑party claimed to have accessed data linked to parts of MTN’s systems, but the operator said it had no information to suggest that customers’ accounts or wallets had been directly compromised. The disclosure was made late on a Thursday evening and noted that the nature of the incident had not been immediately detailed.
Following the discovery MTN activated its cybersecurity response procedures, which included informing the South African Police Service and the Hawks in South Africa. The operator also notified the relevant country authorities in other affected markets and indicated it would continue to update them while working closely with law‑enforcement agencies to support their investigations. MTN said it had begun the process of notifying affected customers in order to comply with local legal and regulatory obligations. As part of its communication the company reminded customers to remain vigilant and to follow regular security measures. MTN added that it would keep stakeholders informed as the situation developed.
The incident affected personal information of some customers, although the specific markets were not named; the involvement of South African police suggested that the South African operation was among those impacted. MTN reiterated that none of its core platforms or services had been compromised and that its network remained operational. The company affirmed that protecting the privacy of information remained its top priority and that it would continue to contain and manage the matter carefully. MTN concluded that it would maintain cooperation with authorities and provide further updates as more information became available.