Further to our announcements dated 21 March 2025 and 25 March 2025 regarding the cybersecurity incident at Cargills Bank PLC, we wish to provide the following update:

• • As previously disclosed, an unauthorized party claimed to have accessed and published certain data belonging to the bank.
• •The bank’s ongoing investigation reveals that some of the bank’s information is among the data.
• •Upon detection of the incident, the bank engaged a team of leading international cybersecurity specialists to support our response. Their mandate includes incident investigation, containment, and strengthening of the bank’s cybersecurity framework.
• •The bank also immediately notified and is continuously updating regulatory and law enforcement authorities on the incident and is fully cooperating with their ongoing investigations.
• •The bank is reaching out individually to identified impacted stakeholders.
• •Importantly, the bank’s core operations remain fully secure and functional. All banking services continue to function normally, and customers may carry out their transactions with complete confidence.

We remain fully committed to protecting our customers’ data and privacy and are working closely with the relevant authorities to contain the unlawful dissemination of data and safeguard all stakeholders.