Details from approximately 310,000 cards from Southeast Asian banks have been breached and are available for sale on the dark web, according to cybersecurity start-up Technisanct based in India. Singapore had 25,290 breached cards while Malaysia and Indonesia had 37,145 and 35,354 respectively. Philippines had the most number of breached cards at 172,828, according to Technisanct.
Technisanct found that the breached cards were belonging to some of the major banks in Singapore, Malaysia, Indonesia and the Philippines. The breaches were uncovered during a research run conducted by its threat analyst team to analyse threats to the financial sector in the Southeast Asian countries. According to the company, it has informed the Computer Emergency Response Team, which manages cybersecurity incidents, in the countries affected to take action. Marketing has reached out to the Monetary Authority of Singapore, Bank Negara Malaysia, and Bank Indonesia for comment.
Southeast Asia has been a target of data breaches over the past year. Last December, eCommerce website Love, Bonito encountered a data breach when a malicious code was added to its online site. About 3% of its consumers may have possibly had their personal information exposed, out of which, a small number may have had their financial data accessed. The company has since removed the code and took steps to secure its systems. Malindo Air also saw the personal data of some of its passengers hosted on a cloud-based environment being compromised in 2019, but has since pleaded not guilty in its court charges in Malaysia under the Personal Data Protection Act 2010.
Meanwhile in July 2019, Sephora's experienced a data breach which compromised personal information of some consumers who have used its online services in Singapore, Malaysia, Indonesia, Thailand, Philippines, Hong Kong SAR, Australia and New Zealand. Personal information including first and last name, date of birth, gender, email address and encrypted password, as well as data related to beauty preferences were some of the data that have been exposed to unauthorised third parties.
3 big insurance brands fined by PDPC for customer data breach
Instagram's data breach: Another blow to FB? Or are consumers just numb to it?
SPH issues apology over HardwareZone data breach affecting 685,000 users
Genki Sushi SG among 5 companies fined by PDPC over personal data breach
Astro hit by data breach, says incident addressed ‘immediately’