Astro hit by data breach, says incident addressed ‘immediately’

Astro has experienced a data breach resulting in its customers’ MyKad data being compromised. According to the company, there was “unauthorised access” to details such as name, NRIC number, date of birth, gender, race and address. However, it clarified that less than 0.2% of its consumers are affected and it is in the process of informing them.

“Please be assured that no financial data of our customers have been disclosed. We addressed this incident immediately and stopped the unauthorised access,” the company said in a statement on its website.

Astro added that it has informed the police, Malaysian Communications and Multimedia Commission and the Department of Personal Data Protection. It is also working closely with the authorities to address this issue.

“We are not able to comment on the incident to facilitate ongoing police investigations. We take the protection of our customers’ personal information seriously and have taken steps to enhance and further strengthen our security,” Astro added.

It also regrets any concern or inconvenience this may have caused, and will continue to be vigilant in protecting our customers’ data.

Last year, Astro also suffered a data breach, which saw the data of 60,000 Astro IPTV consumers being sold online either at RM4,500 for 10,000 records or RM0.45 per record. The details included names, installation address, identity card number, mobile phone number and subscribed package information.

Astro’s spokesperson told A+M then that the management of IPTV customers is a “joint responsibility” between Astro and its telco partner Maxis Broadband. In this case, the data breach is only related to IPTV customers “provisioned by” Maxis and no other customers are affected. It also confirmed that no customer financial data was disclosed and it is working closely with the authorities to address the issue.