More Byte Needed In Data Protection



Cause for concern: A study by British tech website Comparitech on privacy and surveillance in 47 countries placed Malaysia as the fifth-worst country in terms of protecting the personal data of its citizens. — AFPPETALING JAYA: In the wake of yet another data leak, experts are calling for regulatory bodies to take punitive action against organisations that expose users’ personal data, making them vulnerable to scammers.

“In most countries, regulatory bodies define, manage, influence and control how data should or shouldn’t be used by any company or individual,” said enterprise information management vendor ASG Technologies general manager for Asia Pacific Praveen Kumar.

“Unless there is a commercial deterrent defined by regulatory bodies, the business case to invest in data governance, protection and management is not easily justifiable.”

Praveen added that as a result, most companies valued data and treated it as an asset to be merely monetised.

The urgent wake-up call comes after a government microsite exposed users’ bank account details, just two days after a study claimed that Malaysia ranks as the fifth-worst country in terms of protecting the personal data of its citizens.

Yesterday, the Domestic Trade and Consumer Affairs Ministry suspended the Petrol Subsidy Programme microsite for a few hours to fix a flaw that was first revealed by a technology news portal.

The microsite, which went live on Oct 15, could potentially have exposed the details of 2.9 million people that the ministry had identified as belonging to the B40 group that qualify for fuel subsidies.

Lowyat.net had reported that once a person’s MyKad number is entered onto the site, it would reveal the name of the user’s bank, along with the last four digits of the account number.

However, when Lowyat.net looked at the underlying code – or source code, which can be easily viewed from any web browser – the full account number was visible.

“Once we got the news, we decided to put the website on hold because we don’t want to risk anything. We don’t want users to be sceptical about our system,” said the ministry’s head of corporate communications, Yunus Tasim.

The security breach in the petrol subsidy microsite was fixed a few hours later.

Fong Choong Fook, director at cybersecurity company LGMS, said the security flaw was probably caused by the ministry rushing to launch the microsite.

“The bigger concern now is if someone could have used the website as a tool to steal information, just imagine what that can a person do with the details.

“Impersonating an authority figure such as a bank or police officer is a tactic often used by Macau scammers. The more information they have about a user, the more convincing they can be,” he said.

Fong added that the website developer should have encrypted the information.

“This is why I’m not surprised that Malaysia was ranked as one of the worst in personal data protection.

“Both private and public sectors are not fully aware of their responsibility to protect data,” he said.

A study by British tech website Comparitech on privacy and surveillance in 47 countries placed Malaysia as the fifth-worst country in terms of protecting the personal data of its citizens.

The worst was China followed by Russia, India and Thailand.

Fong said that there were not enough prosecutions to bring irresponsible organisations to justice.

“We hardly hear of any party being penalised when it comes to data leak or data loss. So overall, the entire ecosystem is poorly coordinated,” he said.

The report gave Malaysia a score of 2.64 out of five points based on several criteria, including privacy enforcement, data sharing, visual surveillance, identity cards and biometrics, and government access to data.

It further notes that currently only the Personal Data Protection Act 2010 (PDPA) protects the personal data of a person in the country.

“Also, our PDPA doesn’t apply to government agencies, so there is no way they can be held accountable if there is any data loss on their part,” said Fong.

He added that Malaysia should take a page out of the European Union’s General Data Protection Regulation (GDPR) to improve data privacy.

“The five best-performing countries in protecting the privacy of its citizens are European. The GDPR has made very clear the consequences of non-compliance, and the penalty is really heavy,” he said.

Meanwhile, Praveen said the risks of not managing personal data carefully have greater consequences for the consumer and end-user than the enterprise using the information.

“As regulatory environments enact more stringent penalties, there would be a marked difference in how data is stored and analysed by most organisations,” he said.

Last year, the Malaysian Communications and Multimedia Commission (MCMC) terminated the contract of Nuemera (M) Sdn Bhd, which was linked to a massive data leak involving 46.2 million telco accounts in 2017.

Numera was contracted in 2014 by the MCMC to manage its Public Cellular Blocking Service (PCBS) to stop stolen phones from making calls, messaging or connecting to the Internet.

Earlier this month, Communications and Multimedia Minister Gobind Singh Deo told The Star that his ministry was looking at the GDPR as part of its move to amend PDPA.

“The GDPR has many provisions which are very important and helpful but we have to consider requirements that are unique to us.

“So, we’re going to look at the GDPR, the different recommendations that have been put forward by stakeholders, and come up with our own model to see what’s suitable for us to present here,” he had said.

Gobind added that amendments and improvement to the current Act would hopefully be presented to Parliament by the middle of next year.

In the meantime, Fong said there were many measures users could take to minimise the consequences of a data breach.

“Change your password every now and then, choose a strong password, and you should not use the same password across different websites.

“These are some of the common practices individuals can adopt to protect themselves just in case there’s a data leak,” he said.

Praveen also reminded individuals to be responsible for the data they share, and to be aware of the kind of personal information they reveal to companies and through websites.

“Individuals should also avoid providing personal information to unknown sources.

“It is also important for people to clear the cache and history of their web browsers so that personal data does not get stored unknowingly.

“When using a connected device, people need to be careful about which WiFi networks they are connecting to and avoid phishing emails,” he said.

Phishing is the practice of fooling users into giving away confidential or sensitive data.

In a separate study conducted by US tech giant Microsoft Corp and IDC Asia/Pacific in June titled “Understanding Consumer Trust in Digital Services in Asia Pacific”, 41% of consumers in Malaysia said they feel that the government should take the lead in building trust, followed by technology companies and communities.

The study showed that only 24% of consumers in Malaysia believed their personal data would be treated in a trustworthy manner by organisations offering digital services.

In a statement that accompanied the study, CyberSecurity Malaysia chief executive officer Datuk Dr Amirudin Abdul Wahab said: “As our digital economy continues to grow manifold, it has also opened various risks. Data privacy remains a key concern, with both consumers and businesses being at risk of a data breach.”- Star

Artikel ini hanyalah simpanan cache dari url asal penulis yang berkebarangkalian sudah terlalu lama atau sudah dibuang :

http://malaysiansmustknowthetruth.blogspot.com/2019/10/more-byte-needed-in-data-protection.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+MalaysiansMustKnowTheTruth+%28Malaysians+Must

Kempen Promosi dan Iklan
Kami memerlukan jasa baik anda untuk menyokong kempen pengiklanan dalam website kami. Serba sedikit anda telah membantu kami untuk mengekalkan servis percuma aggregating ini kepada semua.

Anda juga boleh memberikan sumbangan anda kepada kami dengan menghubungi kami di sini
Study Malaysia The Fifth Worst Country For Personal Data Protection

Study Malaysia The Fifth Worst Country For Personal Data Protection

papar berkaitan - pada 16/10/2019 - jumlah : 267 hits
computer lockMalaysia has been ranked as the fifth worst country in terms of protecting the personal data of its citizens a tech study shows In a study of privacy and surveillance of 47 countries by British tech website Comparitech Malaysia...
Laman E Bayar Um Digodam Data Peribadi Kata Laluan Kakitangan Dibocor Di Internet

Laman E Bayar Um Digodam Data Peribadi Kata Laluan Kakitangan Dibocor Di Internet

papar berkaitan - pada 20/10/2019 - jumlah : 359 hits
MALAYSIAKINI Beberapa jam selepas Universiti Malaya memaklumkan tiada maklumat dan data terjejas selepas portal e bayar miliknya digodam dilaporkan sejumlah besar data peribadi kakitangan ID login dan kata laluan dibocorkan di internet Lama...
Um Saga Staff Personal Data Login Ids Passwords Leaked Online

Um Saga Staff Personal Data Login Ids Passwords Leaked Online

papar berkaitan - pada 19/10/2019 - jumlah : 296 hits
Several hours after University Malaya claimed no data and information were affected by the hacking of its online e pay link it is now reported a large amount of personal data of its staff login IDs and passwords have been dumped online Tech...
Data Mengandungi Maklumat Bank Pekerja Universiti Malaya Digodam

Data Mengandungi Maklumat Bank Pekerja Universiti Malaya Digodam

papar berkaitan - pada 19/10/2019 - jumlah : 560 hits
Pasca isu Graduan Universiti Malaya yang melakukan tindakkan biadap Universiti Malaya dikejutkan lagi dengan berlakunya kebocoran data daripada database Data yang mengandungi informasi sulit para pekerja telah disebarkan dan dibocorkan Dipe...
Universiti Malaya No Data Compromised In E Pay Portal Hack

Universiti Malaya No Data Compromised In E Pay Portal Hack

papar berkaitan - pada 19/10/2019 - jumlah : 406 hits
Some claimed that more than one UM portal has been hacked and it s likely to put their information at risk if they logged in FilepicPETALING JAYA No data or information was compromised after the Universiti Malaya E Pay Cashless Payment and ...
Kpdnhep Minister Assures Security Of Psp Data

Kpdnhep Minister Assures Security Of Psp Data

papar berkaitan - pada 20/10/2019 - jumlah : 202 hits
Datuk Seri Saifuddin Nasution Ismail 8211 Bernama file photo BANGI Domestic Trade and Consumer Affairs Minister Datuk Seri Saifuddin Nasution Ismail gives his assurance that the Petrol Subsidy Programme banking leakage problem has been solv...
Mtuc Is Needed In The Country

Mtuc Is Needed In The Country

papar berkaitan - pada 21/10/2019 - jumlah : 191 hits
ADUN SPEAKS I don t think there is a need to replace the Malaysian Trades Union Congress given the problems it has with the Human Resources Ministry on the recent amendments to labour laws that were passed by the lower house of the Parliame...
Pemetaan Data Pertanian Jadi Program 100 Hari Kerja Syahrul Yasin Limpo

Pemetaan Data Pertanian Jadi Program 100 Hari Kerja Syahrul Yasin Limpo

papar berkaitan - pada 24/10/2019 - jumlah : 237 hits
Menteri Pertanian Kabinet Indonesia Maju Syahrul Yasin Limpo menargetkan dalam 100 hari kerja akan memetakan data pertanian Dengan adanya pemetaan ini data pertanian menjadi lebih jelas
Wordplay And Slang For Brand Name

Kl Chinatown Festival 2024

Cultural Reasons Make Malaysians Target For Human Trafficking Says Firm

Hiburan Tahu Lah Minat Tapi Tak Perlu Follow Netizen Kecewa Lihat Pemakaian Daiyan Trisha

Seketika Di Tugu Negara

Cops Probing Into Foreigner S Death In Custody At Klia

Cikgu Bawa Trip Tadika Naik Kapal Terbang Dengan Kawan Kawan Pengalaman Baru Anak Anak

Makan Steamboat Dapat Henna Free


echo '';
Info Dan Sinopsis Drama Berepisod Lara Kasih Slot Samarinda TV3

Senarai Lagu Tugasan Konsert Minggu 2 Gegar Vaganza 2024 Musim 11

Keputusan Markah Peserta Konsert Minggu 1 Gegar Vaganza 2024 Musim 11

Senarai Lagu Tugasan Konsert Minggu 1 Gegar Vaganza 2024 Musim 11

Info Dan Sinopsis Drama Berepisod Dhia Kasyrani Slot Akasia TV3


Bitcoin Menghampiri Us 100 000 Mdapa Memberi Peringatan Kepada Pelabur Untuk Lebih Peka

Apa Itu Thyroid Tummy Punca Perut Buncit Yang Jarang Disedari

Topvision Daripada Pasaran Leap Ke Pasaran Ace Bursa Malaysia Securities Berhad

Pengalaman Stay Casabella Homestay Di Batam

Coffee Is For Closers The Motivational Phrase From Quot Glengarry Glen Ross

Coffee 2 0 Brewing The Future Of A Beloved Beverage