KUALA LUMPUR – Preliminary investigation into an alleged data leak involving millions of Maybank and Astro users show that the affected personal information compromised could be in reference to an older incident in 2018.
Communications and Multimedia Minister Fahmi Fadzil said this in a statement following claims on social media that the data of some 12.5 million individuals from the two firms, as well as the Election Commission (EC), have possibly been compromised.
He said the initial probe into the personal details of Maybank users supposedly leaked also found that the accounts in question are either invalid or non-existent, as no transactions could be made via the accounts.
Regardless, Fahmi maintained that confirmation from the relevant quarters is still required for the purpose of full investigation under the Personal Data Protection Act 2010 (PDPA).
“The ministry, through the Personal Data Protection Department (PDPD) and Cybersecurity Malaysia (CSM), is in the midst of obtaining feedback from Maybank and Astro to ensure the validity of the data ownership,” he said today.
As for the leakage allegedly involving EC, Fahmi said the matter is being handled by the National Cyber Security Agency, considering it is beyond PDPA's jurisdiction.
He added that a notice of restriction has also been issued to the Malaysian Communications and Multimedia Commission to block the public from accessing the website uploading the leaked data.
“I would like to remind all data users to always ensure their cybersecurity level is at an optimum, and to consistently comply with the principles and standards of personal data protection, in accordance with the PDPA.”
Yesterday, Facebook user Pendakwah Teknologi uploaded screenshots of posts dated December 25 uploaded on a website claiming that data of 3.5 million Astro users, 1.8 million from Maybank, and 7.2 million from EC have been leaked.
The confidential information compromised include names, usernames, dates of birth, addresses and identity numbers.
Check by The Vibes found that the website is no longer accessible.
Both Maybank and Astro have issued separate statements today claiming they have not experienced any data breaches as alleged.
Earlier, Fahmi said he ordered CSM and PDPD to look into the matter, describing the purported leak involving a huge amount of information as serious. – The Vibes, December 30, 2022
.jpg)
