PETALING JAYA: An individual on a well-known forum that trades in information obtained from data breaches is claiming to have acquired the entire customer database of Telekom Malaysia.
The user made the post on Jan 24, stating that the data contains almost 200 million entries, of which “nearly 20 million are effective user data”.
Additionally, screenshots were provided by the user, purporting to be the company’s customer database architecture documentation, with 161 pages giving a detailed outline of the structure, design, and functionality of the company’s customer database system.
The user also shared samples of alleged customer data obtained from the breach, which includes details such as name, MyKad numbers, address, phone number, salary range, work, religious beliefs, and marital status.
The user has offered to sell the data to Telekom Malaysia first, stating that it will not be sold to others after that.
Previously, the company revealed that it experienced a data breach affecting a select number of customers in July 2023.
It stated that personal information of Unifi customers – including names, MyKad/passport numbers, and contact details – was leaked in the data breach, but no financial information was impacted.
In December 2022, the company confirmed that a data breach affected 250,248 Unifi Mobile customers.
