SINGAPORE - The personal data of over 300,000 customers were exposed, with the firm possibly facing sanctions for lax security. Their names, addresses and mobile phone and identity card numbers were posted on several websites on Tuesday, purportedly by hackers protesting against upcoming toll fee hikes at Woodlands Checkpoint.
Get the full story from The Straits Times.
Here is the statement from K Box:
K Box continues to work closely with the Personal Data Protection Commission (PDPC) and Singapore Police Force in their investigation into the hacking and theft of our database and publication of membership details.
We do not know what their motives are but the actions of these hackers are plainly illegal.
We wish to update you as follows.
In the first 24 hours, we have managed to remove almost 80 per cent of the links leading to the access of our members' data.
We are doing our utmost to ensure that all links are removed as soon as possible.
While we have always maintained strict data protection policies, due to the incident, we have enhanced our data protection measures as an added precaution.
We shall continue to monitor the situation closely and will cooperate fully with the authorities.
We know that this situation has caused considerable stress and anxiety to our valued customers and we deeply regret it.
In light of this incident we understand that some members may consider terminating their membership.
We will accept your membership cancellations unconditionally. Members only need to write in to firstname.lastname@example.org or walk in to any of our outlets and we will process their request promptly.
Of course, we would like you to remain as members of K Box.
We take this data theft very seriously and we ask for your patience and understanding in the meantime. We hope that you will continue to enjoy the services we provide.
We shall endeavour to provide timely updates.