Mysejahtera Spam Emails Otp Messages Not Due To Database Leak Health Ministry


 



The Health Ministry has denied that spam emails and unsolicited one-time passwords (OTPs) sent out from MySejahtera were due to a database leak.
Instead, it said the incidents were due to the abuse of the application programming interfaces (APIs), which are software intermediaries that allow two applications to talk to each other.
“Based on preliminary investigations and other necessary actions by the National Cyber Security Agency, the sending of the false emails and text messages are caused by abuse of the APIs and not a leak in the MySejahtera database,” the Health Ministry said in a statement today.
Earlier, full-stack developer Phakorn Kiong also told Malaysiakini that there were security vulnerabilities in MySejahtera involving the APIs which were causing the spam emails and OTP messages.
The Health Ministry explained that the MySejahtera check-in feature, which is meant for business premises and others to register for a check-in QR code, requires the applicant to enter their email address or phone number to get an OTP.


It said “irresponsible parties” have used random email addresses and phone numbers to trigger the process of registration.
“If the phone number or email address that was entered randomly does exist, MySejahtera will send an OTP to the owner of the phone number or email address to verify the registration,” it added.
Misuse of MySejahtera website
The Health Ministry said the help function on the MySejahtera website was also used to send spam emails randomly.
“Following these irresponsible actions, the MySejahtera team has increased the level of security for the application and the website to prevent the same incident,” it added.  
Kiong earlier explained that the MySejahtera website did not have any ‘locks’ to prevent outsiders from interfering with the APIs.
“In usual design, there are supposed to be 'keys' which the server can use to identify who is calling the server (as a form of authentication).
“The problem with this design is there are no 'locks' implemented. Anyone can come in and abuse the APIs,” he said.
The incident had received widespread attention since last night after many people reported receiving spam emails and unsolicited OTP messages purportedly from MySejahtera. - Mkini


Artikel ini hanyalah simpanan cache dari url asal penulis yang berkebarangkalian sudah terlalu lama atau sudah dibuang :

http://malaysiansmustknowthetruth.blogspot.com/2021/10/mysejahtera-spam-emails-otp-messages.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+MalaysiansMustKnowTheTruth+%28Malaysians+Mus

Kempen Promosi dan Iklan
Kami memerlukan jasa baik anda untuk menyokong kempen pengiklanan dalam website kami. Serba sedikit anda telah membantu kami untuk mengekalkan servis percuma aggregating ini kepada semua.

Anda juga boleh memberikan sumbangan anda kepada kami dengan menghubungi kami di sini
Mysejahtera Exploits Allow Others To Send Out Fake Emails Otp Messages Expert

Mysejahtera Exploits Allow Others To Send Out Fake Emails Otp Messages Expert

papar berkaitan - pada 20/10/2021 - jumlah : 314 hits
The MySejahtera app has been revealed to have security vulnerabilities that allow anyone to send out emails or one time passwords on behalf of the app leading to concerns over personal data breaches The MySejahtera team has since said they ...
Health Ministry Timah And Omar Whisky Labels Not Under Food Act And Food Regulations

Health Ministry Timah And Omar Whisky Labels Not Under Food Act And Food Regulations

papar berkaitan - pada 23/10/2021 - jumlah : 511 hits
Since the whisky brand took the limelight last week some groups and even the Minister in the Prime Minister s Department Idris Ahmad had called for the local alcoholic beverage company to immediately change its Timah brand and the picture u...
Education Ministry Told To Intervene For School Guards Not Paid Salaries

Education Ministry Told To Intervene For School Guards Not Paid Salaries

papar berkaitan - pada 20/10/2021 - jumlah : 318 hits
Jaringan Pekerja Kontrak Kerajaan has called on the Education Ministry to intervene over unpaid salaries owed to security guards in 10 government schools in Perlis It said the private company managing those schools have not paid salaries to...
Health Minister Invokes Act 342 Says Political Gatherings For Election Not Allowed From Tomorrow

Health Minister Invokes Act 342 Says Political Gatherings For Election Not Allowed From Tomorrow

papar berkaitan - pada 25/10/2021 - jumlah : 527 hits
The Ministry of Health today announced that it is prohibiting all activities gatherings or social meetings related to political campaigning for next month s Melaka polls Health Minister Khairy Jamaluddin cited the Prevention and Control of ...
Health Ministry Malaysia S Covid 19 Vaccine Development At Proof Of Concept Stage

Health Ministry Malaysia S Covid 19 Vaccine Development At Proof Of Concept Stage

papar berkaitan - pada 8/10/2021 - jumlah : 346 hits
PARLIAMENT The current status of the country s first Covid 19 vaccine development is at the laboratory or proof of concept stage the Dewan Rakyat was told today Deputy Health Minister II Aaron Ago Dagang said the research conducted for the ...
Health Ministry Addresses Two Deaths Involving Vaccinated Individuals

Health Ministry Addresses Two Deaths Involving Vaccinated Individuals

papar berkaitan - pada 24/10/2021 - jumlah : 242 hits
The Health Ministry has responded to two deaths involving vaccinated individuals The first was a 78 year old woman who tested positive for Covid 19 while in a nursing home in Kuala Lumpur In a statement yesterday Kuala Lumpur and Putrajaya ...
Health Ministry Plans To Meet With Anti Vaccine Groups

Health Ministry Plans To Meet With Anti Vaccine Groups

papar berkaitan - pada 19/10/2021 - jumlah : 284 hits
PARLIAMENT The Health Ministry plans to meet with anti vaccine groups to provide them with facts and information on the Covid 19 vaccine based on authentic clinical studies the Dewan Negara was told today Deputy Health Minister Dr Noor Azmi...
Malacca Election Health Ministry To Accept Whatever The Cabinet Decides

Malacca Election Health Ministry To Accept Whatever The Cabinet Decides

papar berkaitan - pada 8/10/2021 - jumlah : 280 hits
The Health Ministry will accept whatever decision the cabinet makes tomorrow on holding a state election in Malacca its minister Khairy Jamaluddin said Khairy told a press conference that the health authority will prepare whatever procedure...
Lala Kent Insists Demi Lovato S California Sober Approach Is Not Real And Disrespectful

Lala Kent Insists Demi Lovato S California Sober Approach Is Not Real And Disrespectful

papar berkaitan - pada 7/10/2021 - jumlah : 212 hits
Lala Kent Insists Demi Lovato s California Sober Approach Is Not Real and DisrespectfulSource https www aceshowbiz com news view 00178180 html LalaKentInsistsDemiLovato CaliforniaSoberApproachIsNotReal Disrespectful
Tips Design Kotak Packaging Ayam Goreng Yang Viral Di Media Sosial

Having A Strong Company Culture

Pasukan Malaysia Berjaya Meraih Dua Pingat Gangsa Dalam International Physics Olympiad 2025

Buasir Otak Tv Bos Marah Bila Minta Laporan Be Like

Rafizi Maklumat Dah Cukup Untuk Sprm Siasat Farhash

Web Design Company Selangor Build A Website That Works For Your Business

Himpunan Turun Anwar Jadual Masa Lokasi Jalan Tutup 26 Julai

Bukan Guru Biasa Bila Rasa Kagum Jadi Cemburu


echo '';
Info Dan Sinopsis Drama Berepisod Dendam Seorang Madu Slot Tiara Astro Prima

10 Fakta Biodata Amira Othman Yang Digosip Dengan Fattah Amin Penyanyi Lagu Bila Nak Kahwin

5 Tips Macam Mana Nak Ajak Orang Kita Suka Dating Dengan Kita

Info Dan Sinopsis Drama Berepisod Keluarga Itu Slot Lestary TV3

Bolehkah Manusia Transgender Mencapai Klimaks Selepas Bertukar


Small Parties Risk Being Tied To Pn In Opposition Front

Police Beef Up Presence Ahead Of Turun Anwar Rally In Kl

Garuda Muda Lolos Ke Final Indonesia U 23 Taklukkan Thailand Lewat Adu Penalti Di Gbk

Lelaki Hebat Harus Bagaimana

From Data To Decisions How Artificial Intelligence Is Transforming Digital Marketing Strategies

Akaun X Kena Hacked Setel Dalam Masa 8 Jam