724.co.th

724.co.th operates as an online insurance marketplace headquartered in Thailand, functioning as a digital intermediary for insurance products. The platform enables customers to compare and purchase various insurance policies, serving the domestic Thai market. It is structured as a subsidiary under its parent company, Srikrung Broker, which defines its corporate ownership and operational oversight. As a specialized financial technology service, it focuses on aggregating insurance offerings to provide consumers with accessible options within the sector. The marketplace handles sensitive personal and financial information from users, including identification documents and loan records, as part of its service流程. Its business model relies on facilitating transactions between insurance providers and end-users, positioning it within the competitive fintech landscape of Thailand. The platform's existence as a dedicated insurance marketplace distinguishes it from general aggregators by concentrating solely on insurance products. Operational scale and specific market share details are not provided, but its role as a targeted entity in a significant cyberattack indicates a substantial customer base and data repository. The service likely requires compliance with Thai financial and data protection regulations, though specific regulatory roles are not detailed. Its digital nature makes it susceptible to cyber threats, as evidenced by documented incidents affecting its infrastructure and data security.

In July 2022, 724.co.th suffered a major security incident when the threat actor DESORDEN executed a cyberattack against its systems. This breach resulted in the exfiltration of 1.75 terabytes of highly sensitive customer data, including scanned identification copies and loan records. The stolen information was subsequently published on a hacking forum, dramatically increasing the exposure risk for affected individuals. The attack coincided with prolonged website accessibility problems, as connection attempts to the 724.co.th domain timed out, suggesting a disruptive compromise. This event was directly linked to a prior intrusion against its parent company, Srikrung Broker, indicating a coordinated campaign against the corporate group. DESORDEN's actions were part of a broader pattern of attacks targeting Thai organizations during that period, where the group used public hacking forums to announce breaches and distribute stolen data. The threat actor explicitly denied employing ransomware in most of its operations, distinguishing this incident from typical ransomware attacks. The breach underscored critical vulnerabilities in the marketplace's data protection measures and highlighted the persistent threat posed by organized cybercriminal groups to Thailand's financial technology sector. The public leak of documents created long-term risks for customers, including potential identity theft and fraud. This incident remains a defining event in the organization's recent history, reflecting both the value of its data holdings and the challenges of cybersecurity in the regional insurance market.