Further to our communication dated 21 March 2025 concerning a cybersecurity incident at Cargills Bank, we wish to provide the following update.
An unauthorized party has claimed to have accessed some of bank’s data and subsequently claimed to have published the same. The bank has taken the following actions pursuant to identifying the above cyber security incident:

• • promptly isolated the suspected components and are enhancing security.
• • retained the services of internationally recognized cybersecurity specialists to thoroughly investigate the incident, provide immediate incident response, safeguard the bank against further incursions, and bolster the bank’s cybersecurity preparedness.
• • officially reported this incident to the appropriate regulatory authorities and law enforcement agencies.
• • is actively collaborating with cybersecurity experts, regulatory authorities and law enforcement agencies to limit the dissemination of data and adhere to their directives.
• • has not seen any impact on core banking systems, and the banking operations remain unaffected. Customers are able to conduct daily transactions without interruption

We acknowledge that cybersecurity incidents generate curiosity and concern among customers and stakeholders, and we assure you that the bank is addressing this situation with the highest degree of diligence. We express our gratitude for your patience and cooperation during this process.