top of page

Data Theft in Malaysia: Rising Cybersecurity Concerns

At GreatRise IT Consulting, we're seeing a big rise in data theft in Malaysia. The country is now eighth in the world for cyber attacks, with almost half a million accounts leaked in just one quarter of 2023. This huge 144% jump shows we really need strong ways to stop cybercrime.


Malaysian businesses are under constant cyber attack, with 74,000 attacks every day. These attacks are not just a problem here; they cost the world USD8 trillion in 2023. Experts think this cost will triple by 2027, hitting USD24 trillion.


Data theft in Malaysia

Data privacy worries are growing, with 76% of Malaysians saying they've been hit by online or phone scams. Without laws that make companies report breaches, it's harder to trust our online safety.


We're determined to tackle these issues. We're working hard to stay ahead of threats and use the latest protection. Our goal is to keep your digital stuff safe and make sure Malaysia's online world is secure.


Key Takeaways

  • Malaysia ranks 8th globally for cybersecurity breaches

  • 74,000 daily cyber attacks on Malaysian businesses

  • Global cybercrime costs expected to reach USD24 trillion by 2027

  • 76% of Malaysians have experienced online or phone scams

  • Lack of mandatory breach reporting laws in Malaysia

  • Urgent need for enhanced cybersecurity measures and awareness


The Current State of Cybersecurity Threats in Malaysia


Malaysia is facing a growing number of cybersecurity challenges. The digital world is full of risks, from identity theft to complex hacking. Online fraud is also on the rise, changing how we view digital safety.


Statistical Overview of Cyber Incidents

The numbers are alarming. In 2023, Malaysia saw a huge jump in data breaches, with 646 cases. This is a 1192% increase from 2022. By September 2024, the Ministry of Digital had already received 427 data breach reports. These numbers highlight the need for strong cybersecurity measures.


Most Common Types of Cyber Attacks

Cyber threats in Malaysia are varied and changing. Hack-and-leak incidents are a big worry, with 67% of businesses concerned. Cloud security is also a major concern, with 47% of respondents worried. Other common threats include attacks on connected devices and third-party breaches.


Financial Impact on Malaysian Economy

The economic impact of these threats is big. Globally, 36% of organizations have spent $1 million or more on their worst breach in three years. In Malaysia, businesses are investing in cybersecurity, with 69% of executives updating technology to improve security.

Cyber Threat

Percentage of Concern

Hack-and-leak incidents

67%

Cloud security risks

47%

Attacks on connected devices

57%

Third-party breaches

43%

As cyber threats grow, so must our defenses. The increase in hacking and online fraud demands a united effort from businesses, government, and individuals. Together, we can protect Malaysia's digital future.


Understanding Data Theft in Malaysia


Data theft in Malaysia is a growing concern. More personal data leaks are happening. Cybercriminals target various types of data, affecting both people and businesses.


Types of Data Being Targeted

Cybercriminals look for valuable data to sell. They often steal:

  • Full names and MyKad numbers

  • Home addresses and phone numbers

  • Salary information

  • Email credentials

  • Application access information (e.g., WordPress, File Transfer Protocols)


Personally Identifiable Information (PII) Breaches

PII breaches are very worrying. In September 2021, data of 4 million Malaysians was sold for 0.2 bitcoin (RM35,495). In May 2022, 22.5 million Malaysians' data was stolen and sold for USD10,000.


Impact on Businesses and Individuals

Data theft affects everyone. Businesses lose money and reputation. Individuals face identity theft and fraud.


The MySejahtera app was attacked 1.12 million times by February 2023. This could have exposed data of 38 million users.

Impact Area

Consequence

Financial

Increased fines up to MYR1,000,000 for non-compliance

Legal

Imprisonment up to three years for data protection violations

Operational

Mandatory appointment of Data Protection Officer

Consumer Rights

New right to data portability for data subjects

As laws change, businesses must keep up. They need to handle data better and notify about breaches. These steps help keep data safe and protect privacy in Malaysia.


Evolution of Cybercrime Tactics in Malaysia


Malaysia is facing a fast-changing world of cybersecurity threats. In the first quarter of a recent year, 4,327 cybercrimes were reported. This shows the need for strong digital crime prevention strategies.


Cybercriminals are getting smarter. Phishing is a big problem, with scammers making fake websites to steal personal info. They're also hacking into computer systems to steal or change data.


Double extortion ransomware is a new threat. It encrypts files and threatens to leak or sell stolen data. This puts a lot of pressure on victims to pay.


Ransomware-as-a-service on the dark web makes it easier for cybercriminals to attack. This means even those with little skill can cause big damage. It's a big problem for Malaysian businesses and people.

Cybercrime Type

Reported Cases (Jan-Sep 2021)

Fraud

5,899

Intrusion

1,198

Other Cybercrimes

1,129

As cybercrime tactics change, so must our defense. We need to stay alert and keep our security up to date. This is key to protecting Malaysia's digital world from these threats.


Recent Major Data Breaches and Their Implications


Data theft in Malaysia has skyrocketed, with a 1,192% rise in 2023. The country saw 646 reported cases, showing the need for better cybersecurity.


Notable Cases and Statistics

A big cybersecurity breach hit about 13 million Malaysians. This included:

  • 3.5 million Astro customer records

  • 1.8 million MAYBANK customer records

  • 7.2 million SPR (Election Commission) records

The leak was first found by ThreatMon, a cyberthreat intelligence platform.



Response from Affected Organizations

The Ministry of Communications and Digital started an investigation. Maybank said there was no data breach after checking. CyberSecurity Malaysia joined the probe. The Malaysian Communications and Multimedia Commission got a restriction notice.


Lessons Learned from Past Incidents

These breaches show the need for:

  • Strong data protection

  • Regular security checks

  • Clear communication

  • Good incident response plans

Companies must focus on cybersecurity to keep their reputation and customer trust in a digital world.


Malaysia's Cybersecurity Legislative Framework


Malaysia is making its cybersecurity laws stronger to fight data protection issues and cyber attacks. The Cyber Security Act 2024 is a big change in how the country handles digital security.


Cybersecurity Act 854

The Cybersecurity Act 854 replaces old laws, including the Personal Data Protection Act 2010. It sets up a 13-member National Cyber Security Committee led by the Prime Minister. This act aims to protect key national information and requires incident reports.


Personal Data Protection Act Updates

The new law tackles growing data protection worries. With 29 million citizens' data in the PADU database, strong laws are essential. The PADU database faces over 2 million attempts to breach it every day, showing the need for better security.


Compliance Requirements for Organizations

Organizations, mainly in key sectors, must follow strict rules:

  • Implement incident response plans

  • Report breaches quickly

  • Do regular risk assessments

  • Follow specific Codes of Practice


The government has put over $500 million in the 2024 budget for cybersecurity and digital growth. This money aims to fill the gap of 12,000 cybersecurity workers in Malaysia. The goal is to have 25,000 cybersecurity experts by 2025.


With cyber attacks on the rise, these new laws are vital. They aim to make the digital world safer for businesses and people in Malaysia.


Role of CyberSecurity Malaysia in Combat Data Theft


CyberSecurity Malaysia combating cybercrime

CyberSecurity Malaysia (CSM) leads the fight against digital crime in Malaysia. As the national cybersecurity specialist agency, CSM protects the country's digital world. In 2023, they reported 5,917 cybersecurity incidents, with 646 cases of data theft. This is a big jump from 2022's 50 cases.


The Cyber999 Help Centre is a key resource for dealing with cybercrime. In the first three months of 2024, CSM saw 142 data breaches. This shows how urgent their work is. CSM stresses the need for a strong incident response plan and teamwork across sectors.


CSM is working hard to make Malaysia's cyber world safer:

  • SiberKASA: Focuses on awareness and educational training

  • MyCERT: Provides 24/7 incident response services

  • Cyber Security Responsive Services: Offers immediate assistance during cyber attacks

  • Cyber Security Proactive Services: Helps organizations prevent future incidents


The agency also partners with countries worldwide to fight cybercrime. Their work supports the Malaysia Cyber Security Strategy (MCSS) 2020-2024. This strategy has 12 strategies, 35 action plans, and 113 programs to protect Malaysia's cyberspace.

"Without intervention, data thefts in Malaysia will continue to rise. Our role is to empower businesses and individuals with the knowledge and tools to protect themselves in the digital realm."

CyberSecurity Malaysia is a key player in Malaysia's battle against cybercrime and data theft. They work hard to make the digital world safer for all Malaysians.


Prevention Strategies and Best Practices


In Malaysia's digital world, cybersecurity threats and data privacy worries are growing. At GreatRise IT Consulting, we know how important it is to have strong prevention plans. Let's look at some key steps to protect your digital stuff.


Organizational Security Measures

Companies need to focus on keeping data safe to avoid risks. Using multi-factor authentication (MFA) is a great way to stop unauthorized access. Keeping software up to date and using strong encryption like AES or RSA helps close security gaps. It's also important to check who has access to sensitive info often.


Individual Protection Guidelines

Everyone has a role in keeping the internet safe. Be careful with emails from unknown senders and check online deals are real. Use different, strong passwords for each account and turn on two-factor authentication (2FA) when you can. Remember, most cyber attacks happen because of human mistakes, so staying alert is key.


Security Awareness Training

Learning is essential in fighting cyber threats. Companies should invest in security training for everyone. This helps people spot phishing scams, which are getting smarter. By teaching cybersecurity, businesses can lower their risk and keep data safe.

  • Do regular cybersecurity checks and risk reviews

  • Use data minimization to lessen breach damage

  • Use AI tools to find sensitive data and spot risks

  • Follow global privacy laws like DPDPA, GDPR, and CCPA

  • Keep data backups to restore info quickly if needed

By following these steps, both companies and people can fight off cyber threats and keep data safe.


International Collaboration and Cybersecurity Partnerships


As cybercrime and data theft rise in Malaysia, working together globally is key. Digital threats are connected worldwide. So, we need a global effort to fight them.


Regional Cooperation Initiatives

ASEAN countries are boosting their cybersecurity. In 2020, they created a Cybersecurity Cooperation Strategy. This aims to improve cyber safety in Southeast Asia.


They also set up the ASEAN Cybersecurity Coordinating Committee. This group works to better coordinate cybersecurity efforts across sectors. Their goal is a safer digital space for everyone in Southeast Asia.

International collaboration against cybercrime

Global Threat Intelligence Sharing

Malaysia is ranked 22nd in the 2023 National Cyber Security Index. This shows it's a leader in cyber security in the region. It plays a big role in sharing threat information worldwide.


The country is active in international forums. It shares knowledge and strategies to fight cybercrime.

Recent stats show why we need to work together:

  • 79% of Malaysian software supply chains faced cyberattacks in the past year

  • 38% of Malaysian organizations needed up to a month to recover from supply chain attacks

  • Southeast Asian businesses suffered over 36,000 average daily online attacks in 2023

These numbers highlight the importance of strong international partnerships. Together, we can build better defenses against cyber threats.


Future Challenges and Emerging Threats


The world of cybersecurity in Malaysia is changing fast. New challenges are coming up for keeping digital crimes at bay. Three main areas need focus to tackle these threats.


AI and Machine Learning Impact

Artificial Intelligence (AI) and Machine Learning are both good and bad for cybersecurity. They help find threats but also help attackers. A World Economic Forum survey shows 56% of AI benefits go to attackers, not defenders.

This shows we need new ways to fight cyber threats.


Quantum Computing Risks

Quantum computing is a big threat to our current encryption. By 2030, it could make our encryption useless. We need to work fast on new encryption methods to keep our data safe.


Evolution of Ransomware Threats

Ransomware attacks in Malaysia have grown a lot in 2023. A scary 85.2% of these attacks stole and shared data. The LockBit group was behind 14 data breaches in Malaysia.

Cybersecurity Concern

Percentage of Malaysians Concerned

Bank Card Fraud

88%

Identity Theft

87%

Viruses/Hacking

77%

To fight these threats, Malaysian organizations should use strong security. This includes firewalls, intrusion detection, and endpoint protection. Regular checks and phishing tests are key to staying safe.


Conclusion

Data theft in Malaysia is a growing problem. High-profile breaches at AirAsia and iPay88 show even big companies can be hit. These events remind us all of the dangers out there.


We need a strong plan to fight these threats. This includes better laws, stronger security, and working together globally. At GreatRise IT Consulting, we offer cutting-edge IT solutions to help businesses stay safe.


Comments


fishoil5313_A_friendly_and_approachable_robotic_customer_serv_4d410850-f83d-4f7b-8831-caea
How Can We Assist You?

Thanks for submitting!

bottom of page