IMPROVE DIGITAL SECURITY
MALAYSIA recently witnessed one of the largest data breaches ever seen, with 46.2 million mobile subscribers’ data compromised and leaked online.
Some victims found breaches within breaches, their MyKads linked with phone numbers they had not registered for.
And several days ago, a major bank was in the spotlight after several of its tapes containing customer information were lost during routine operations.
These breaches involving personal data are not the first to happen.
Earlier this year, Malaysia was among 100 nations hit in the worldwide WannaCry ransomware cyberattack.
The software encrypted data on computers and networks, preventing victims from accessing them unless a specified payment was made.
In 2015, students and parents’ personal data were sold to higher education institutions, breaching provisions of the Personal Data Protection Act 2010.
Recent shifts in our way of living have increased our reliance on technology and our need to share private information digitally.
The e-commerce sector boom, digitalisation of financial services and increased use of Malaysian mobile and related apps require us to share a piece of our private lives in exchange for the use of these technologies.
This is not limited to personal identifiable information or banking details, but also commonly shared information like phone numbers, locations, and contact lists.
The interconnectivity of data and the Internet poses benefits and risks to users.
The way forward in addressing this risk is to advocate the responsible use of computing technology.
This includes taking necessary steps to reduce vulnerabilities, including reducing opportunities for cybercriminals to take advantage of.
Continuous public education is paramount.
The second way forward is to study and improve data security and how information is stored in industry sectors, such as financial institutions and the telecommunications sector.
Are companies who set up security and technology systems to safeguard our data competent and capable of deterring fastchanging cyberattacks?
Do we need to start looking into certification as a mandatory requirement for vendors or security providers to ensure security services provided to companies are competent?
The safekeeping of digital information is in everyone’s interest.
The nature of cyberattacks and data thefts is constantly evolving, with new ways being invented to access digital data.
The Malaysia Communications and Multimedia Commission, CyberSecurity Malaysia, the Education Ministry, private sector and non-governmental organisations must work together to improve and address the situation to avoid similar incidents in the future.