Police to investigate alleged security breach and sale of personal data of nearly 4 million Malaysians

The Royal Malaysian Police have opened an investigation paper on the alleged security breach involving personal data of nearly 4 million Malaysians. An individual had recently posted on a forum that a database containing names, addresses, phone numbers, IC numbers and photos is up for sale for 0.2 BTC (about RM35,000). It was alleged that the data was obtained from the National Registration Department (NRD) and Inland Revenue Board (IRB) through MyIdentity API.

Bukit Aman Commercial Crime Investigation Department director Datuk Mohd Kamarudin Md Din said that an investigation was launched after the NRD’s deputy director had lodged a police report at Presint 7 police station in Putrajaya yesterday. The police are obtaining a report from the NRD’s information technology division and they will inspect systems of both NRD and IRB to determine the source of the alleged leak. The case will be investigated under Section 4 (1) of the Computer Crimes Act 1997.

According to the CCID director, they do not rule out the possibility of the involvement of insiders and they are conducting a thorough investigation with the Malaysian Communications and Multimedia Commission, CyberSecurity Malaysia and National Cyber Security Agency (NACSA). The police are also taking necessary action to stop the sale of the database to prevent the situation from becoming worse.

The IRB has released a statement today denying reports of security breach on their website through the MyIdentity API. It clarified that IRB is merely a user and they do not own the MyIdentity system. It added that internal checks revealed that there’s no breach of information or leak as alleged and they are working closely with the NRD, NACSA and National Security Council to look into all possibilities of the allegation.

The statement also said that they regretted the allegation as it may erode public trust on their data security. They also urged users to be careful about sharing such reports which could be created by certain irresponsible parties with the intention to confuse and mislead the public. It assured that all personal data stored by the IRB are safe and protected with certified data security technology.

[ SOURCE, IMAGE SOURCE ]

Recent Posts

Asus ROG Phone 9 series launching in Malaysia on 10th December 2024

After unveiling its latest smartphones, the Asus ROG Phone 9 series, to the world, Asus…

21 minutes ago

WhatsApp Voice Message Transcripts converts voice into text

WhatsApp has introduced a new Voice Message Transcripts feature which allows users to easily convert…

7 hours ago

Every Transaction Could Make You a Monthly Millionaire – Here’s How with Maybank’s MAE

This post is brought to you by Maybank. Unlock more than just transactions with MAE’s…

18 hours ago

Oppo Find X8 series: Launching in Malaysia on 30th November 2024, priced from RM3,699

After making its debut in China late last month, the Oppo Find X8 series has…

22 hours ago

Hyundai Ioniq 9: The brand’s first 3-row electric SUV, offers up to 429hp and 620km of range

Hyundai has officially unveiled the new Ioniq 9 which marked yet another expansion to its…

23 hours ago

BMW Group leads Malaysia’s premium EV segment, long term certainty needed for local assembly

BMW Group remains bullish in its commitment to drive sustainable mobility across the Southeast Asian…

1 day ago

This website uses cookies.