Connect with us

Malaysia

Malaysian Govt denies claims of 17 million ID cards leaked to dark web

The Malaysian National Registration Department has denied claims of a data breach involving MyKad information for 17 million Malaysians.

The department, in a statement on 5 December, affirmed that its systems are secure and under investigation by the National Cyber Security Agency and police.

Published

on

MALAYSIA: The Malaysian National Registration Department (NRD) has rejected claims of a data breach involving MyKad information for 17 million Malaysians, maintaining that its systems are secure and no suspicious transactions have been detected.

In a statement issued on 5 December 2024, NRD stated that internal investigations found no evidence of data leaks or unauthorised activity within its systems. The department also emphasised that no such incidents have ever occurred within its database.

“To address this matter comprehensively, NRD is collaborating with the National Cyber Security Agency (Nacsa) and the Royal Malaysia Police to support investigations on their part,” it added.

NRD reaffirmed its commitment to safeguarding the security and integrity of Malaysians’ personal data, stressing that such information remains protected under its care.

Alleged Dark Web Sale of MyKad Data for 17 Million Malaysians

The allegations of a significant data breach first emerged on 3 December, when dark web threat intelligence firm StealthMole claimed on X (formerly Twitter) that MyKad data from 17 million Malaysians was being offered for sale online.

The firm stated that samples of Malaysian ID cards had been shared on the dark web as evidence, raising concerns about potential identity theft and financial fraud.

However, in a post on Thursday, StealthMole shared a screenshot featuring multiple blurred MyKad images, claiming that additional Malaysian ID cards had been found leaked and circulating on the dark web.

Earlier, Malaysian Home Minister Datuk Seri Saifuddin Nasution Ismail refuted the claim, stating, “So far, no incident of data leakage has been reported. ”

“The government assures that the integrity of data, particularly the public’s personal information, is always safeguarded,” he said.

On Wednesday, Nacsa confirmed it was investigating the claims, labelling the issue as “serious” and assuring the public of its ongoing efforts to verify the authenticity and scope of the alleged breach.

“Nacsa is committed to safeguarding personal data and will take necessary action based on our findings,” a spokesman said.

The agency also urged Malaysians to remain vigilant, monitor their financial accounts for unusual activity, and adopt good cyber hygiene practices, such as using strong passwords and avoiding suspicious links or emails.

Click to comment
Subscribe
Notify of
0 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments

Trending