Gerakan president Dominic Lau has called on the authorities to clarify whether reports of 17 million MyKad data being leaked and sold on the dark web are true.
He urged the authorities to investigate and share its findings to address public concerns.
The alleged MyKad data breach was first flagged by dark web threat intelligence company StealthMole on X.
The company said there were claims that MyKad data samples had been shared on the dark web as evidence to verify the authenticity of the leak.
Some social media users said that the image shared by StealthMole - which appeared to be photos of the front side of MyKads - indicates that the leak was of Electronic Know-Your-Customer (e-KYC) data.
E-KYC is a verification tool used by multiple platforms to ascertain that a user is a Malaysian citizen.
Lau said if the alleged breach is true, it would mean the personal information of half the Malaysian population has been exposed, raising serious public safety and national security concerns.
“The perpetrators have openly shared MyKad samples as evidence on the dark web.
“If these samples are genuine, it is a grave issue that could lead to immeasurable losses for individuals and the economy.
"This large-scale data breach is alarming and could result in crimes such as identity theft and financial fraud,” Lau warned in a statement today.
Lau stressed the need for an immediate investigation to identify those responsible and assess whether government systems have been compromised due to weak infrastructure or software vulnerabilities.
He referred to a statement by the Malaysian Digital Foundation (YDM), which revealed that personal data from government departments and private organisations was being sold on the dark web for prices ranging from RM4,400 to RM45,000.
Additionally, he said databases from the Women, Family, and Community Development Ministry and the National Population and Family Development Board have previously been reported as being breached.
Lau also criticised the widespread demand by government agencies and private companies for personal data, arguing that privacy in Malaysia has essentially been eroded.
He called for stronger laws and stricter penalties to curb the growing fraud problem. - Mkini
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.