image

Cybersecurity

Malaysian police still looking at mobile phone numbers leak claim

More than 46 million postpaid and prepaid numbers, customer addresses as well as sim card details leaked

PUBLISHED : Tuesday, 31 October, 2017, 3:38pm
UPDATED : Tuesday, 31 October, 2017, 3:40pm

By Fairuz Mohd Shahar

Police are investigating the leak of 46.2 million mobile phone numbers of Malaysian telephone companies (telcos) and mobile virtual network operators.

Inspector-General of Police Tan Sri Mohamad Fuzi Harun said the investigation is being conducted by the police’s Commercial Crime Investigation Department.

“We are working with the Malaysian Communications and Multimedia Commission (MCMC) as this case is quite complicated since it involves telecommunication service providers.

“So far, we cannot reveal much as it is still ongoing. We are collecting information as to how the numbers and details were leaked.

“If we found the culprit, we will not hesitate to take legal action,” he told the New Straits Times.

MCMC, when contacted, said it would leave the investigation to the police and would give its full cooperation.

Lowyat.net reported that about 46.2 million mobile phone numbers of Malaysian telcos and mobile virtual network operators have been compromised and leaked online.

According to the report, the leak included postpaid and prepaid numbers, customer addresses as well as sim card details from all major operators including DiGi, Celcom, Maxis, Tunetalk, Redtone and Altel.

The technology news site said the time stamps on the files it downloaded indicate the leaked data was last updated between May and July 2014 between the various telcos.

“We are also now fairly certain that the individual who tried to sell the data two weeks back acquired the data in a similar fashion that we did, and tried to make a quick profit by attempting to sell it on our Forums,”

“We have shared all details regarding the data that we uncovered, as well as how we managed to obtain all the data with the MCMC last week,” the site said.

Lowyat.net said it also confirmed that a total of three databases belonging to the Malaysian Medical Council, Malaysian Medical Association and Malaysian Dental Association (MDA) have also been leaked.

These medical databases include personal information, MyKad, phone numbers, as well as work and residential addresses.

On October 19, Lowyat.net reported that personal data of millions of Malaysia were up for sale and that the source of breach was still unknown.

© New Straits Times Press (M) Bhd

Read the original article at The New Straits Times