By HANI SHAMIRA SHAHRUDIN - November 16, 2017 @ 12:34pm

KUALA LUMPUR: The massive online breach of information on over 46 million mobile phone subscribers in Malaysia is believed to have occurred during a data transaction.

Inspector-General of Police (IGP) Tan Sri Mohamad Fuzi Harun said initial investigation has revealed that the breach could have occurred during a data transfer, when a number of crooked employees of a company were able to take advantage of the situation.

“We have some leads pertaining to the case and we have identified those involved.

“Further action will be taken (against the alleged culprits),” he said, adding that the company for which they worked is not involved in the crime.

When asked if the source of the breach has been identified, Fuzi said police are still investigating the matter.


“I cannot confirm the source of the leak, but we have leads on how it happened. (It was) not (the work of a) syndicate,” he said.

Fuzi said investigators are currently working with telco companies to pinpoint the source of the leak, but the motive has yet to be established.

https://www.nst.com.my/news/crime-courts/20...-identified-igp

This post has been edited by FatalExe: Nov 17 2017, 09:54 AM

Someone should initiate a class action lawsuit against the telcos... Can't just blame it on some rogue employees and call it a day

I think Malaysians are not very well versed with corporate responsibility.

Even if it's rogue employee doing the leaking, it's still an employee of the Telco. It doesn't matter if the company did not intend to leak it.

Whatever that happens under the company, the company is equally liable and responsible. If not, then no companies would be liable since they can just blame it on random scapegoats.

It isn't rocket science guys. Protek corporate interest is the dumbest thing a society can do.

When McDonald's employee in USA had the wrong water temperature set for their coffee machine and burned one of their customers, do you blame that employee or McDonald's? Ultimately McDonald's is the one to blame because of corporate responsibility, they did not provide adequate training, they did not set limiters for their coffee machines, it was McDonald's providing their service in their premises, employees are part of the corporation, etc.

Same logic for this case. Rogue employees still represent the company. There is no such thing as only blaming the employee and there is even less sense for PDPA commission and MCMC and police to protect corporate interest when they should protect consumer and public interest instead. Especially when it involves the data breach of the entire country.

This post has been edited by FatalExe: Nov 17 2017, 11:25 AM

Yes. Maybe we should contact bar council to initiate class action lawsuit.