Police to investigate alleged security breach and sale of personal data of nearly 4 million Malaysians

The Royal Malaysian Police have opened an investigation paper on the alleged security breach involving personal data of nearly 4 million Malaysians. An individual had recently posted on a forum that a database containing names, addresses, phone numbers, IC numbers and photos is up for sale for 0.2 BTC (about RM35,000). It was alleged that the data was obtained from the National Registration Department (NRD) and Inland Revenue Board (IRB) through MyIdentity API.

Bukit Aman Commercial Crime Investigation Department director Datuk Mohd Kamarudin Md Din said that an investigation was launched after the NRD’s deputy director had lodged a police report at Presint 7 police station in Putrajaya yesterday. The police are obtaining a report from the NRD’s information technology division and they will inspect systems of both NRD and IRB to determine the source of the alleged leak. The case will be investigated under Section 4 (1) of the Computer Crimes Act 1997.

According to the CCID director, they do not rule out the possibility of the involvement of insiders and they are conducting a thorough investigation with the Malaysian Communications and Multimedia Commission, CyberSecurity Malaysia and National Cyber Security Agency (NACSA). The police are also taking necessary action to stop the sale of the database to prevent the situation from becoming worse.

The IRB has released a statement today denying reports of security breach on their website through the MyIdentity API. It clarified that IRB is merely a user and they do not own the MyIdentity system. It added that internal checks revealed that there’s no breach of information or leak as alleged and they are working closely with the NRD, NACSA and National Security Council to look into all possibilities of the allegation.

The statement also said that they regretted the allegation as it may erode public trust on their data security. They also urged users to be careful about sharing such reports which could be created by certain irresponsible parties with the intention to confuse and mislead the public. It assured that all personal data stored by the IRB are safe and protected with certified data security technology.

[ SOURCE, IMAGE SOURCE ]

Recent Posts

Porsche Taycan and Macan EV prices surge in Malaysia: Up to RM410k higher

Porsche has recently updated the price of its EV lineup in Malaysia, and the changes…

15 hours ago

TNG eWallet now lets you search SSM company records and download official documents

If you need to verify a Malaysian business or obtain more background information, you can…

18 hours ago

Bye-bye physical discs: PlayStation goes digital-only from 2028

For close to two decades, buying a new PlayStation game meant picking up a Blu-ray…

19 hours ago

Flexi Parking is back online: Look out for minor teething issues

The Flexi Parking system is operational again after being crippled for the past few days…

20 hours ago

Hotlink 5G Travel SIM offers 7-day “unlimited” internet in 4 countries for RM25

Hotlink has enhanced its Travel SIM offering which lets you stay connected in 4 countries…

20 hours ago

Semak Kasih offers a legit starting point to check for unclaimed takaful and life insurance

The Malaysian Takaful Association (MTA) and Life Insurance Association of Malaysia (LIAM) have recently launched…

1 day ago

This website uses cookies.