Police have opened an investigation paper on an alleged personal data leak claimed to be from the National Registration Department (JPN) and the Inland Revenue Board (LHDN).
Bukit Aman Commercial Crime Investigation Department director Mohd Kamarudin Md Din said the investigation was launched after the JPN deputy director lodged a report at the Presint 7 police station, Putrajaya, yesterday.
He said the police would obtain a report from JPN’s information technology division and inspect the JPN and LHDN systems to determine the source of the alleged leak, adding that the police are looking at the allegations from all angles.
“Our initial action will be to block the data from being sold. The police do not rule out the possibility of the involvement of insiders but a thorough investigation will be carried out in collaboration with the Communications and Multimedia Commission, CyberSecurity and National Cyber Security Agency,” he said at a special press conference at the Jinjang police station in Kuala Lumpur today.
Kamarudin said the case is being investigated under Section 4 (1) of the Computer Crimes Act 1997.
An online discussion forum had claimed that the data of four million citizens from JPN’s database was up for sale on a well-known database forum market today.
It said the database was obtained from the LHDN website through an application programming interface or API made for myIDENTITY.