Cyber Incident Victim: Malaysian Immigration Department
Date:
Sep 2022
Location:
Malaysia
Summary
A cyber-attack targeted Malaysian Immigration Department systems, reportedly compromising sensitive government data including approximately one million records and two million salary slips from an e-salary database. The breach prompted calls for an official inquiry into the incident, with demands for a Royal Commission to investigate the security failure and address vulnerabilities in the affected infrastructure.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In August 2022, a significant data breach impacted the Malaysian Immigration Department, compromising personal information from historical records. The Home Ministry confirmed the incident on August 19, 2022, after a user named "888" advertised the stolen data for sale on the "Breach Forums" cybercrime platform. The dataset contained personal details of Malaysian citizens, including police and military personnel, with exposed information such as full names, identification card numbers, and residential addresses. Initial reports indicated the breach affected millions of individuals, with subsequent claims suggesting the data covered approximately 22.5 million Malaysians – nearly the country's entire population at the time. The seller offered the complete dataset for $10,000 in cryptocurrency, characterizing it as Malaysia's "full citizens data." Authorities clarified that the compromised information originated from 2014-2015 records and emphasized that current immigration systems remained unaffected. This disclosure followed previous cybersecurity incidents affecting Malaysian government infrastructure, contributing to public concerns about data protection practices.
The breach triggered official responses and public scrutiny regarding government cybersecurity preparedness. Home Ministry officials advised citizens to monitor their financial accounts and report suspicious activity, though no specific remedial measures for affected individuals were detailed in initial communications. Separately, on September 1, 2022, Lembah Pantai MP Fahmi Fadzil demanded Prime Minister Ismail Sabri Yaakob establish a Royal Commission of Inquiry (RCI) to investigate cybersecurity failures, referencing an additional contemporaneous breach targeting the government's e-salary system that allegedly exposed 1 million records and 2 million salary slips. The coordinated timing of these incidents amplified political pressure for systemic reforms, though forensic details about attack vectors, perpetrator identification, or data recovery efforts remained undisclosed in available reports. The historical nature of the immigration data limited immediate operational security implications but raised persistent concerns about identity theft risks and the long-term safeguarding of citizen information within government repositories.