Online data breaches seem to be a running theme today – both telecommunications company M1 and karaoke entertainment operator K Box experienced massive leakage of personal data to the public.
Earlier today, M1 rectified a security loophole that was discovered by a prudent customer during the course of pre-ordering the new iPhone models. Pre-orders were temporarily suspended yesterday to protect their customers’ personal information yesterday when a Computer Science masters student pointed out in a post on the M1 Facebook page regarding a loophole on the operator’s website, which allowed public access to information such as phone numbers, NRIC and home addresses of customers.
Following the security patch on the website, M1 re-opened the iPhone 6 pre-orders again, promising that a “full review” of the incident will be conducted. “M1 places the utmost priority in protecting our customer data and privacy and has implemented strict processes and procedures to safeguard customer information including regular security audits,” they stated in a Facebook post earlier today.
For K Box Singapore on the other hand, the security breach looks to be much more severe. According to Channel NewsAsia, personal details of more than 317,000 K Box members appear to have been leaked publicly by a group calling themselves ‘The Knowns’. Reportedly, the group has emailed links to various media outlets, directing them to the list of members’ details.
Channel NewsAsia mentions that the list comprises of names, contact numbers, email addresses, NRIC numbers, dates of birth and martial status, including K Box membership numbers and reward points earned.
‘The Knowns’ collective have claimed responsibility for the leak, expressing their detest for the recent increase in toll charges at the Woodlands immigration checkpoint. The online security breach was thus done to indicate their displeasure over the “unnecessary financial burden on working Malaysians”, vowing to carry out cyber-attacks again.
Investigations are currently ongoing.
Photo: Wikimedia Commons
Read Also: ‘Messiah’ hacker not that 1337 anymore
