Jump to content

Personal information of nearly 80,000 customers affected in MyRepublic data 'incident'

zipping

By zipping,
in Lite & EZ

 Share

Recommended Posts

zipping

zipping

Supersonic

https://www.channelnewsasia.com/singapore/myrepublic-data-breach-nric-personal-information-2168531

 Personal information of nearly 80,000 customers affected in MyRepublic data 'incident' 

The data breach took place on a third-party data storage platform with scanned copies of customers' NRICs and utility bills, but the facility has since been secured and the incident "contained", says MyRepublic.

Personal information of nearly 80,000 customers affected in MyRepublic data 'incident'  A MyRepublic outlet in Singapore. (Photo: TODAY/Ili Nadhirah Mansor) Davina Tham Davina Tham 10 Sep 2021 12:32PM (Updated: 10 Sep 2021 01:10PM) Bookmark Share

 SINGAPORE: MyRepublic Singapore said on Friday (Sep 10) that it has discovered an "unauthorised data access incident" affecting 79,388 customers. 

The incident took place on Aug 29 and affected MyRepublic mobile subscribers based in Singapore, said the local telcom. Advertisement 

"The unauthorised data access took place on a third-party data storage platform used to store the personal data of MyRepublic's mobile customers," it said in a statement. 

The platform contained identity verification documents related to customer applications, the firm said. 

This included scanned copies of both sides of the NRIC for affected customers who are Singaporeans, permanent residents or holders of employment passes and dependant's passes. 

For other affected foreigners, the data included documents showing proof of residential address, such as scanned copies of a utility bill. 

For customers porting from an existing mobile service, the affected data included their names and phone numbers. Advertisement 

There was "no indication" that any other personal data, such as account or payment information, was affected, said MyRepublic. 

"The unauthorised access to the data storage facility has since been secured, and the incident has been contained," the telcom said. 

It added that "no MyRepublic systems were compromised and there was no operational impact on MyRepublic's services". 

MyRepublic CEO Malcolm Rodrigues said there was "no evidence" that any personal data was misused, and that the company was contacting customers who may be affected to provide them support. 

"We are also reviewing all our systems and processes, both internal and external, to ensure an incident like this does not occur again," he said. Advertisement 

All affected customers will be offered a complimentary credit monitoring service through Credit Bureau Singapore, which will monitor their credit report and alert them of any suspicious activity, said the telcom. 

MyRepublic said it has informed the Infocomm Media Development Authority and Personal Data Protection Commission of the incident, and would cooperate with the authorities.

It has also activated its cyber incident response team.  "The privacy and security of our customers are extremely important to us at MyRepublic.

Like you, we are disappointed with what has happened, and I would like to personally apologise for any inconvenience caused," said Mr Rodrigues.

Source: CNA/dv(rw)

 

↡ Advertisement
  • Praise 1
  • Shocked 2
Link to post
Share on other sites
DOBIEMKZ

DOBIEMKZ

Turbocharged
56 minutes ago, zipping said:

https://www.channelnewsasia.com/singapore/myrepublic-data-breach-nric-personal-information-2168531

 Personal information of nearly 80,000 customers affected in MyRepublic data 'incident' 

The data breach took place on a third-party data storage platform with scanned copies of customers' NRICs and utility bills, but the facility has since been secured and the incident "contained", says MyRepublic.

Personal information of nearly 80,000 customers affected in MyRepublic data 'incident'  A MyRepublic outlet in Singapore. (Photo: TODAY/Ili Nadhirah Mansor) Davina Tham Davina Tham 10 Sep 2021 12:32PM (Updated: 10 Sep 2021 01:10PM) Bookmark Share

 SINGAPORE: MyRepublic Singapore said on Friday (Sep 10) that it has discovered an "unauthorised data access incident" affecting 79,388 customers. 

The incident took place on Aug 29 and affected MyRepublic mobile subscribers based in Singapore, said the local telcom. Advertisement 

"The unauthorised data access took place on a third-party data storage platform used to store the personal data of MyRepublic's mobile customers," it said in a statement. 

The platform contained identity verification documents related to customer applications, the firm said. 

This included scanned copies of both sides of the NRIC for affected customers who are Singaporeans, permanent residents or holders of employment passes and dependant's passes. 

For other affected foreigners, the data included documents showing proof of residential address, such as scanned copies of a utility bill. 

For customers porting from an existing mobile service, the affected data included their names and phone numbers. Advertisement 

There was "no indication" that any other personal data, such as account or payment information, was affected, said MyRepublic. 

"The unauthorised access to the data storage facility has since been secured, and the incident has been contained," the telcom said. 

It added that "no MyRepublic systems were compromised and there was no operational impact on MyRepublic's services". 

MyRepublic CEO Malcolm Rodrigues said there was "no evidence" that any personal data was misused, and that the company was contacting customers who may be affected to provide them support. 

"We are also reviewing all our systems and processes, both internal and external, to ensure an incident like this does not occur again," he said. Advertisement 

All affected customers will be offered a complimentary credit monitoring service through Credit Bureau Singapore, which will monitor their credit report and alert them of any suspicious activity, said the telcom. 

MyRepublic said it has informed the Infocomm Media Development Authority and Personal Data Protection Commission of the incident, and would cooperate with the authorities.

It has also activated its cyber incident response team.  "The privacy and security of our customers are extremely important to us at MyRepublic.

Like you, we are disappointed with what has happened, and I would like to personally apologise for any inconvenience caused," said Mr Rodrigues.

Source: CNA/dv(rw)

 

I wonder who is that third party storage platform.

  • Haha! 1
Link to post
Share on other sites
Ct3833

Ct3833

Supersonic
On 9/10/2021 at 2:18 PM, DOBIEMKZ said:

I wonder who is that third party storage platform.

must be some cheap service provider. anyway, third party or not, the primary owner has the full responsibility, by saying third party would not help to releif them any responsibility of the icident, it is merely a tactic to evade responsibillity 

↡ Advertisement
  • Praise 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...