In a statement, U Mobile said it’s aware of the alleged data breach. It said: “We are actively investigating this situation. We are working closely with the authorities to address this matter effectively and will provide relevant updates once confirmed information becomes available. We wish to assure all stakeholders that we take matters of cybersecurity and data privacy seriously and are dedicating all resources to thoroughly investigate the situation.”

PETALING JAYA: The National Cyber Security Agency (Nacsa) is investigating an alleged data breach exposing the information of four million U Mobile subscribers.

The data, claimed to include personally identifiable information (PII) such as names, addresses, MyKad numbers, and mobile phone numbers, went up for sale on July 16 for US$5,000 (RM23,380) in Bitcoin on a notorious forum known for selling leaked information.

However, the posted sample looked incomplete, with some entries missing MyKad numbers and addresses.

When contacted, Nacsa, the government agency overseeing cybersecurity incidents in Malaysia, said it’s currently conducting an investigation into the legitimacy of the data. It has also requested further details from U Mobile.

LifestyleTech has reached out to U Mobile for comments.