What happened during the Liberty data breach?

Unauthorized third parties gained access to select internal data systems at Liberty, a South African insurer, leading to the exposure of customer personal information.

What specific customer data was compromised?

The compromised data includes customer names, surnames, and national identity (ID) numbers.

Are Liberty's insurance and investment services still safe to use?

Yes, Liberty confirmed that its services remain unaffected, fully operational, and that client policies and investments remain secure.

How is Liberty responding to the incident?

Liberty has launched a full investigation with external experts, notified the Information Regulator as required by POPIA, and is alerting affected clients via SMS.

What should affected Liberty customers do?

Customers are advised to monitor their accounts and credit profiles for unusual activity, enable multi-factor authentication, and remain vigilant against phishing attempts.

Incident

South African Insurer Liberty Reports Data Breach

published: March 24, 2026

Learn More

Liberty, a major South African insurer and subsidiary of the Standard Bank Group, reports a data breach on March 11, 2024, following unauthorized third-party access to its internal data systems.

The insurer claims that the breach was limited to some systems and did not affect its core operations or the security of client investments. The current investigation is supported by external cybersecurity experts to determine the full scope of the breach. The compromised data includes:

Full names
Surnames
National Identity (ID) numbers

The nature of the attack and number of affected individuals is not disclosed. Affected clients are being notified via SMS and reassured that services remain fully operational. The insurer stated that it operates within a robust regulatory framework and is taking all necessary steps to fulfill its legal obligations to data subjects.

Liberty recommends that affected clients monitor their credit profiles and bank statements for fraudulent activity and enable multi-factor authentication (MFA) on all financial accounts. Users should be careful for phishing attempts or social engineering that may use the stolen data.

South African Insurer Liberty Reports Data Breach

Read More
Lafayette Life reports third party data breach
French Pension Insurance (CNAV) hit by cyberattack, exposes …
New York Life reports MOVEit related data breach
Arkansas Blue Cross and Blue Shield reports third …
PDCM Insurance hit by ransomware attack, exposes employee …