PKR’s Fahmi sues MCMC, firm over massive data breach

Fahmi-Fadzil
PKR communications director Fahmi Fadzil (left) showing the writ of summons on the data breach. With him is lawyer Syahredzan Johan.

KUALA LUMPUR: PKR communications director Fahmi Fadzil has filed a civil suit against two parties over the massive data breach involving more than 46 million mobile subscribers in Malaysia.

The two parties are the Malaysian Communications and Multimedia Commission (MCMC) and Nuemara (M) Sdn Bhd, the company managing the Public Cellular Blocking Service (PCBS).

“The civil suit is for failing to guarantee the safety of personal information of the mobile users.

“It involves 42 million users. It involves almost all citizens and foreigners living in Malaysia,” he told reporters at a press conference here today.

He is being represented by lawyer Syahredzan Johan, who was also present at the press conference.

Fahmi said the leaked information contained users’ addresses, IC numbers, dates of birth and other personal information.

He said the incident took place in 2014 but no one had yet taken responsibility for it, nor had anyone been detained over the leak.

“Despite it being a large scale data leak, we have not been told why and how the leak took place, or the measures taken. I hope the civil suit will spur these questions and we will get answers.”

He added that in any developed country, the person in charge would take responsibility and resign.

“In fact, if it is shown that the company responsible failed to guarantee the safety of the users, their contract should perhaps be terminated.”

Meanwhile, Syahredzan said the case was based on breach of trust for failing to guarantee the personal safety of mobile users.

“We would like to question what measures were taken before, during and after the leak,” he said.

MCMC has said it is investigating the case.

The data breach was first discovered by technology forum site Lowyat.net.

It was informed that someone was trying to sell huge databases of personal details for an undisclosed amount of Bitcoin on its forums. The individual was trying to sell private customer information from at least 12 Malaysian mobile operators.

Personal information from multiple Malaysian public sector and commercial websites was also stolen.

 

Over 46 million mobile numbers leaked online, says report