Every year between July and October, millions of South Africans use SARS eFiling and the SARS MobiApp to submit highly sensitive financial and personal informationEvery year between July and October, millions of South Africans use SARS eFiling and the SARS MobiApp to submit highly sensitive financial and personal information

South Africa Tax Season puts Cyber Security under the Spotlight

이 콘텐츠에 대한 의견이나 우려 사항이 있으시면 [email protected]으로 연락주시기 바랍니다

Every year between July and October, millions of South Africans use SARS eFiling and the SARS MobiApp to submit highly sensitive financial and personal information.

In 2025 alone, more than 10 million unique users accessed SARS’ digital platforms, creating an attractive target for fraudsters seeking to steal identities, banking credentials and tax refunds.

Tax season has become prime time for cybercrime

The predictable surge in online tax activity has turned filing season into a lucrative opportunity for cybercriminals.

Throughout the 2025 filing period, SARS, Standard Bank, Capitec and Nedbank all issued public warnings about a rise in phishing attacks, fake tax refund notifications and attempts to hijack eFiling accounts.

Former SARS Commissioner Edward Kieswetter repeatedly reminded taxpayers that SARS never requests personal or banking information via email or SMS, urging users to remain vigilant.

Although there are no official figures showing how many taxpayers were successfully defrauded during the 2025 tax season, the volume of alerts from financial institutions and industry bodies points to a significant increase in tax-related cybercrime.

How fraudsters hijack eFiling accounts

According to the South African Fraud Prevention Service, criminals increasingly exploit the convenience of SARS’ digital systems, particularly the auto-assessment process.

Investigations by the Office of the Tax Ombud into hijacked eFiling profiles identified weaknesses in authentication, profile management and fraud detection that allowed criminals to alter banking details and redirect tax refunds before victims became aware of the fraud.

Attackers typically combine several techniques:

  • Data stolen through previous breaches
  • Social engineering attacks
  • Fraudulent SIM swaps
  • Phishing campaigns
  • Credential theft

A successful SIM swap is particularly dangerous because it allows criminals to intercept one-time passwords (OTPs), reset eFiling credentials and change banking information linked to tax refunds.

In many cases, once fraudsters control a victim’s mobile number, they can bypass one of the final security barriers protecting both banking and SARS accounts.

Why AI is becoming essential

For banks and fintech companies, tax season has become a major test of fraud detection capabilities.

Transaction volumes rise sharply during filing season, making it impossible for human analysts alone to monitor every login, payment and account change.

This is where AI-driven telemetry is becoming increasingly valuable.

Unlike traditional rule-based systems—which flag transactions only when predefined thresholds are breached—AI continuously builds a behavioural profile for each user.

These profiles incorporate factors such as:

  • Device characteristics
  • Login locations
  • Access times
  • Transaction history
  • Normal behavioural patterns

When activity deviates from a customer’s established profile, AI can detect the anomaly in real time, often before a transaction is completed.

Modern identity protection is also increasingly incorporating behavioural biometrics, analysing factors such as typing rhythm, swipe pressure and even the angle at which a device is held. These indicators provide an additional security layer without adding friction for legitimate users.

Beyond compliance

Cyber security during tax season is no longer simply a compliance issue.

Regulatory frameworks define what organisations must protect, but they do not identify evolving threats or provide real-time defence against sophisticated attacks.

AI-driven telemetry and threat intelligence fill that gap by enabling continuous monitoring at a scale that manual systems cannot achieve.

For taxpayers, the expectation is straightforward: the platforms used to file taxes, update banking details and receive refunds should provide robust protection without making security the user’s responsibility.

As tax fraud becomes more sophisticated, AI-powered detection is emerging as a critical tool for governments, banks and fintech firms seeking to protect customers while maintaining a seamless digital experience.

The post South Africa Tax Season puts Cyber Security under the Spotlight appeared first on FurtherAfrica.

시장 기회
CyberConnect 로고
CyberConnect 가격(CYBER)
$0.353
$0.353$0.353
-0.02%
USD
CyberConnect (CYBER) 실시간 가격 차트

World Cup Combo: Aim for 200x

World Cup Combo: Aim for 200xWorld Cup Combo: Aim for 200x

Combine up to 20 World Cup matches in one order

면책 조항: 본 사이트에 재게시된 글들은 공개 플랫폼에서 가져온 것으로 정보 제공 목적으로만 제공됩니다. 이는 반드시 MEXC의 견해를 반영하는 것은 아닙니다. 모든 권리는 원저자에게 있습니다. 제3자의 권리를 침해하는 콘텐츠가 있다고 판단될 경우, [email protected]으로 연락하여 삭제 요청을 해주시기 바랍니다. MEXC는 콘텐츠의 정확성, 완전성 또는 시의적절성에 대해 어떠한 보증도 하지 않으며, 제공된 정보에 기반하여 취해진 어떠한 조치에 대해서도 책임을 지지 않습니다. 본 콘텐츠는 금융, 법률 또는 기타 전문적인 조언을 구성하지 않으며, MEXC의 추천이나 보증으로 간주되어서는 안 됩니다.

$5M in SPCX Positions for Free

$5M in SPCX Positions for Free$5M in SPCX Positions for Free

0 fees, 100x leverage, daily prizes, 7K+ stocks/ETFs