Thursday, June 30, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Data Breaches

Personal details of 220,000 Malaysian organ donors and their next of kin leaked online

by Vijandren
January 23, 2018
Personal details of 220,000 Malaysian organ donors and their next of kin leaked online
734
SHARES
Share on FacebookShare on Twitter

Organ or tissue donation is a noble practice, one that has not exactly picked up in Malaysia. In fact, according to this report, Malaysia has one of the lowest percentages of pledged organ donors in the world. And now, that number might just shrink a little more.

We can confirm, that files containing complete details of pledged organ donors has been leaked online as early as September 2016. The data contained in the file is updated up to 31st August 2016, and contains the following details of organ pledgers.

Pledger Code Next of Kin Name
Donor MYKad Number NOK Relationship
Donor Full Name NOK Address
Donor Old IC NOK Phone (Home/Mobile/Office)
Donor Date of Birth Organs to Donate
Donor Age Source (Location Registered)
Donor Nationality Status
Donor Race Date Submitted
Donor Gender Remarks
Donor Address Donor Email
Donor Phone (Home/Office/Mobile)

The fields are similar to this online sign up form found at http://dermaorgan.gov.my, however we are fairly certain that the leaked data does not originate from the online form – which in itself doesn’t appear to be working at time of writing. The leaked data contains sign up data from Government Hospitals as well as National Transplant Resource Centers across the country – which would mean that its has been retrieved from a central database.

As noted in the screenshot below, the files were dumped on the 19th of August 2016, and uploaded online to a popular file sharing service on the 29th of September the same year.

The data dump is divided into files, by year of sign up – from 1997 till 2016, however, for reasons we are not able to ascertain, all data from 1997 to 2008 is filled with auto generated dummy data, rendering them useless.

The data dump from January 2009 to August 2016 however contains complete personal details of around 220,000 individuals who have signed up as organ donors, as well as personal details of their next of kin.

ADVERTISEMENT

2009* 908
2010 20,381
2011 31,084
2012 31,611
2013 28,105
2014 42,804
2015 48,883
2016* 16,618
Total 220,394

Aside from the personal details of all pledged organ donors, the dump also includes yearly breakdown of demographic data of all organ pledgers, broken down by sex, race, state of origin, types of organs as well as age group.

While the total number of records of this leak is nowhere near the massive amounts of data leaked in the mobile telco data breach that we reported back in October 2017, this leak contains one very serious implication where it reveals personal information of a nominated next of kin. This doubles up the actual number of records leaked to 440,000, and also links two individuals to each other in a binding relationship – whether it may be husband/wife, siblings or parental.


Aside from the usual risks associated with data breaches, the presence of relationship data between two individuals also increases the risks of malicious social engineering attacks against the victims.

We have already reached out and notified the PDP of this data leak before publishing our findings. We are also once again calling out to all organizations who handle personal data to ensure that they exercise due care and diligence in ensuring the safety of the data that has been entrusted to them.

Note: The disclosure above is part of a bigger data breach that we believe was leaked online between September and November 2016. Fortunately, the rest of the breach, which involves a number of Malaysian organizations, did not involve any personal data. Due to that reason, we will not be disclosing the details here, and will be leaving it in the hands of the relevant authorities to follow up on.

Featured Image Credit : The Star Online

Updated 10:21 am, Wed, 24 January 18
Back to top
Share294Tweet184SendShare

ADVERTISEMENT

RELATED ARTICLES

Ministry of Home Affairs Data Leak Not From JPN Hamzah Zainudin
Data Breaches

Home Ministry Limits JPN Database Access To 44 Agencies

by Ian Chee
June 29, 2022

Last month, we reported that a dataset from the National Registration Department (JPN) containing the personal information of 22.5 million...

Read more
NC4 Latest Alert Reveals An Active Cyberattack Campaign Against Malaysian Websites
Security

PingPull Is A New Trojan That Targets Telecom, Finance, Government Entities

by Ian Chee
June 23, 2022

For cybercriminal groups targeting the average user, it is usually enough that you keep your wits about you and don't...

Read more
The Importance Of Securing Your Enterprise’s IT Systems From Cyber Threats
Security

The Importance Of Securing Your Enterprise’s IT Systems From Cyber Threats

by Newsdesk
June 20, 2022

The recent COVID-19 pandemic has forced significant changes into the way businesses operate, chief among which is the shift towards...

Read more
StoreHub login access token
Data Breaches

StoreHub Denies Data Leak Claim Involving A Million Users (Update)

by Ian Chee
June 16, 2022

UPDATE : StoreHub has sent us a statement that says that its own internal investigations show that the vulnerability did...

Read more
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    E-Hailing

    Gojek Confirms It Will Not Be Entering Malaysia

  2. 2
    News

    Employees Can Apply For Flexible Working Arrangements Starting 1 September

  3. 3
    ISP

    TM Is Upgrading Network Infrastructure Nationwide: Provides Wi-Fi 6 Router To 100Mbps Plan

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.