The Digest:
The Corporate Affairs Commission (CAC) has flagged a security breach involving unauthorised access to parts of its systems and urged users to update their login credentials as a precaution. The commission said it has activated response protocols and is collaborating with NITDA and other agencies to assess the scope of the breach. Dark Web Informer claims about 25 million documents were allegedly exfiltrated, but CAC has not confirmed this. Stakeholders are advised to monitor their records on the CAC portal.
Key Points:
- Appropriate containment measures have been implemented, the commission said.
- The threat actor is allegedly ByteToBreach, according to Dark Web Informer.
- CAC processes up to 10,000 business registration requests daily.
- The commission deregistered over 400,000 companies in 2025.
- Users are urged to remain cautious of unsolicited communications.
