A hacker has published a database on a dark web forum, allegedly belonging to Maybank2u, the online banking platform of Maybank.
This alleged leak has raised significant concerns due to the sensitive nature of the data involved.
Daily Dark Web reports that according to the forum post on BreachForums, a popular hacking forum where cybercriminals trade stolen data, the alleged leak contains databases with user personal data as well as login information.
The leaked information reportedly includes names, passwords, addresses, genders, dates of birth, cities, IC numbers, contact numbers, states, and postcodes.
The hacker has provided samples from the alleged leak to substantiate their claims and has left a Telegram handle for contact information.
The hacker is requesting USD18,000 (~RM84,159) and is accepting payments in cryptocurrencies. Additionally, the message indicates a preference for Chinese customers.
However, Lowyat.net suggests that the database might be fake due to the noticeable absence of numerous fields typically associated with databases containing secure login credentials.
The lack of basic information such as security phrases and security images, which would normally be stored in clear text rather than hashed and salted passwords, is conspicuously absent from the datasets.
This is not the first time someone made a claim that Maybank’s database has been leaked.
In December 2022, a Facebook user with the name “Pendakwah Teknologi” claimed that user information of 1.8 million Maybank customers had been leaked.
In 2023, investigation by CyberSecurity Malaysia reveals that leaked data doesn’t match with Maybank’s data.
We have reached out to Maybank via Facebook and this is what they have to say:
With respect to the alleged claim, Maybank would like to reassure our customers that our systems remain secure, and all Maybank customer’s information is fully protected.
Nevertheless, we take these security concerns very seriously and continue to monitor and ensure our data is protected at all times.
With the various fraud countermeasures put in place, including the usage of Secure2U to authenticate transactions, and cooling off period enabled for high risk transactions, our customers online transactions continue to be protected.
We would like to remind our customers always to remain vigilant and protect their information.
Please keep your User ID, password and personal details safe, and be cautious of malware, WhatsApp messages and phishing sites and phone calls requesting your credentials.
