Standard Bank is under intense regulatory scrutiny following a serious technical glitch on its newly launched business banking platform that reportedly granted some clients unauthorized access to accounts they had no legal right to manage. The breach, which the bank has described as “an isolated system error,” has raised fresh concerns about the safety of South Africa’s digital banking infrastructure.
The issue emerged during the bank’s ongoing migration to a redesigned online banking system, first rolled out in mid-2024 as part of a broader digital overhaul aimed at streamlining business client services. However, one client, a small business owner from Gauteng, claimed she was shocked to discover that she had gained full administrative access to a trust account belonging to a completely unrelated third party. According to her account, she could view transaction histories, download statements, and potentially initiate payments—despite having no legal or professional connection to the trust.
“We are treating this matter with the utmost seriousness,” a Standard Bank spokesperson told reporters on Thursday. “The problem affected a limited number of cases during a specific window of the migration process. No funds were lost, and the vulnerability has since been closed.”
However, banking watchdog groups have questioned how such a fundamental access control failure could occur in a live environment. The South African Banking Risk Information Centre (SABRIC) has reportedly asked for a full technical audit. Standard Bank confirmed that additional reviews and enhanced security checks are now being implemented across the platform, and affected clients have been notified. The National Credit Regulator is said to be monitoring the situation closely.
About The Author
