Wednesday, 2 July 2025: Eskom continues to take decisive action following the disclosure in its full-year 2024 financial results, released in December 2024, of a forensic report detailing the breach of its Online Vending System (OVS). The system was exploited to generate and distribute fraudulent prepaid electricity tokens, revealing critical vulnerabilities in both the physical and cybersecurity components of the utility’s prepaid electricity infrastructure.

In response, Eskom undertook a comprehensive review and intervention strategy aimed at mitigating these vulnerabilities and restoring system integrity.

“We uncovered weaknesses in physical and cybersecurity components on our OVS system,” said Monde Bala, Eskom’s Group Executive for Distribution.

“Earlier this year, Eskom successfully strengthened the protection of its current systems against potential threats. All system enhancements are managed through a robust Change Management process that spans all divisions, ensuring consistent oversight and control. These measures are part of Eskom’s ongoing commitment to safeguarding operations and addressing identified vulnerabilities,” said Eskom’s Chief Technology and Information Officer, Len De Villiers.

Latest key actions implemented:

While the investigation into the OVS system breach continues, Eskom has taken several proactive steps to strengthen its systems and restore public confidence. The utility has made significant progress in enhancing and protecting its infrastructure, ensuring greater resilience and reliability.

Internal controls to deal with electricity theft have been implemented.
Measures to safeguard the system by reinforcing physical infrastructure and limiting both physical and digital access.
Enhanced monitoring capabilities to ensure transparency and timely reporting.
On-going collaboration with law enforcement agencies to support investigations and ensure accountability. As part of this process, internal employees who have been implicated have been placed on precautionary suspension pending further review.
Augmented in-house capabilities, supported by an external Information Technology (IT) firm tasked to better manage risks and safeguard operations.
Coordinated system upgrades through a structured change management process.
Regular reporting to the Eskom Board, which has maintained oversight throughout the remediation process.
Accelerated acquisition of a new, secure vending system, designed to replace the current OVS and prevent future incidents.

“We are fully aware of the challenges that have emerged within the OVS environment and we have taken clear steps to address them. Our focus is on restoring trust, strengthening our systems, and ensuring that our customers can rely on a secure and efficient service. This is not just a technical fix, it is part of a broader commitment to transparency, operational excellence and accountability,” said Eskom’s Group Chief Executive, Dan Marokane.

Whilst Eskom continues with its investigation in conjunction with law enforcement agencies, the findings will only be shared once the process is complete and the appropriate time for disclosure has been determined.

As Eskom continues to investigate and strengthen its systems and governance, it calls on stakeholders and its customers to remain vigilant and report any suspicious activity related to prepaid electricity tokens.

ENDS

Eskom continues to strengthen security systems and oversight of its Online Vending System

Load Reduction – Gauteng

Cable theft leads to loss of supply to Hoopstad and Hertzogville

43rd Eskom Expo International Science Fair kicks off with robotics and coding activities

Loadshedding will remain at Stage 3 until 05:00 on Monday. Thereafter, Stage 2 loadshedding will be implemented until 16:00.

Loadshedding continues to be suspended: R17.25 billion in year-on-year diesel savings achieved

SA teens to compete in high-tech Hong Kong science fair

Similar Posts