Cyber Threat Actor: Datatheft
| Actor Type | Location | Known Incidents |
Criminal
|
Malaysia
|
1 incident |
|---|
Profile
The threat actor knownby the alias Datatheft has been linked to a cyber incident in Malaysia. The actor’s location is identified as Malaysia. No other aliases or personal details about the actor have been publicly disclosed. The actor is referenced in open‑source reporting concerning an attempt to move funds from a financial institution. On 18 October 2018, Datatheft was associated with an unauthorized attempt to transfer funds from the systems of Bank Negara Malaysia. Bank Negara Malaysia is the country’s central bank, responsible for issuing currency and overseeing the financial system. The attempt was detected and blocked by the bank’s security measures before any funds could be moved. The intervention prevented potential financial loss and preserved the integrity of the bank’s internal systems. The reporting did not specify which malware families or tools were employed in the attempt. No information was provided about the actor’s identity, group affiliation, or possible sponsors. The summary explicitly states that the attack vector and perpetrators remain undisclosed. Because of these gaps, any inference about the actor’s usual methods would be unsupported and is therefore omitted.
The incident highlighted the ongoing risks faced by financial institutions from cyber threats. Bank Negara Malaysia’s successful detection and prevention demonstrated its capability to identify and stop illicit fund transfer attempts. The bank’s response underscored its commitment to maintaining robust cybersecurity protocols for critical national financial infrastructure. The event served as a reminder of the need for continuous vigilance against unauthorized access to banking systems.
Aside from the 2018 episode, no further publicly reported operations or campaigns have been attributed to Datatheft. The actor remains primarily associated with this single thwarted fund‑transfer attempt against Malaysia’s central bank. Without additional verified information, a broader profile of the actor’s targeting patterns, objectives, or affiliations cannot be constructed. Therefore, the known facts about Datatheft are limited to the alias, the Malaysian location, and the foiled 2018 incident at Bank Negara Malaysia. This concludes the factual overview based solely on the available source material.
