The DA in the Mangaung Metro has expressed grave concern regarding the vulnerability of the municipality’s network security, and the apparent lack of accountability thereof by the authority. The municipality’s network system has not fully recovered since a security breach following a cyber attack in ransomware in November last year.
The municipality confirmed the security breach in its network was caused by ransomware, with its source apparently “unknown.” In 2013, the municipality also suffered a similar cyber attack which caused disarray in its information technology (IT) system functions.
In a statement issued on Friday, 25 October, Dirk Kotze, DA councillor for the Mangaung Metro, lamented the negative impact in resolving the network system and addressing transparency in the ongoing investigations in the cyber attack over the course of the year.
“To date, the Mangaung council has yet to receive a detailed report from the executive mayor addressing critical issues, including: Was the ransom paid to the hackers and if so, what measures have been implemented to prevent future attacks? Have any municipal officials been suspended or held accountable for this breach, and what steps are being taken to ensure accountability moving forward?” asked Kotze.
“This incident compromised the municipality’s IT system and involved a ransom demand of R10 million for the release of encrypted files.”
He further stressed the residents of the metro deserve answers and accountability regarding the incident.
According to Kotze, the recent appointment of a new chief technical officer (CTO) has brought no significant impact in resolving concerns over the network system since the cyber attack last year, further stressing that the response by Mokete Duma, head of corporate services, during a recent Section 80 committee meetings for corporate services, has raised questions regarding transparency and accountability.
The critical vacancy was filled after five years.
“The call centre is not functioning at full capacity, and the municipality’s website remains under construction for over a year, further impeding service delivery.
“The DA calls for immediate action to address these pressing issues and we demand a detailed report from the executive mayor outlining the events surrounding the ransomware attack, including the status of the ransom and accountability measures for officials involved.
“In February, the DA requested an oversight inspection of the IT department, which was denied. This denial raises concerns about the municipality’s commitment to transparency in its operations.
“Additionally, it is troubling that this is not the first cybersecurity incident. The system was compromised in 2018, causing it to be offline for over two weeks. Residents have consistently voiced their frustration over inaccurate municipal accounts, incorrect meter readings, and overcharges for disconnected water meters,” said Kotze.
