Broadband provider WhizComms’ server breached by third party; customers’ information stolen

[Windwaver]

https://www.straitstimes.com/singapore/broadband-provider-whizcomms-server-breached-by-third-party-customers-information-stolen

UPDATED

 9 MINS AGO

SINGAPORE – Broadband service provider WhizComms notified customers on Wednesday that its Web server had been breached, resulting in a third party stealing their personal information.

In an e-mail seen by The Straits Times, the firm said that the data breach affected some customers only, with those affected receiving it.

The third party who accessed the firm’s Web server had downloaded scanned images of customers’ personal information, including their NRICs, work permits and tenancy agreements.

There was no indication that contact and payment information had been stolen, although the e-mail warned affected customers to look out for any suspicious activities that used their identities.

“With scam calls and fraudulent activities already on the rise, we recommend that you continue to be vigilant, especially for any potential signs of identity fraud,” the e-mail added.

WhizComms markets itself as having the cheapest 1 Gbps (gigabit per second) plan, which it offers at $32.40 per month for a 24-month contract.

Its broadband service is powered by Singtel. It did not disclose the number of people affected, nor did it say when it first detected the breach.

It said that the unauthorised access had already been contained, and it is working with the police, the Personal Data Protection Commission (PDPC) and the Infocomm Media Development Authority.

It added that it was strengthening its safeguards to prevent a reoccurrence of such incidents.

The Straits Times has contacted WhizComms for more information.

Meanwhile, a PDPC spokesman said the commission has been notified of the incident and is investigating.

[kobayashiGT]

They cheapest meh? hahahahah. 

[Inlinefour]

好野冇平货

 

平货买不过

 

😱😱😱😱

[Volvobrick]

With only slap on the wrist punishment, companies won't take it seriously to beef up their efforts to protect consumer data one.... 

Much cheaper to pay the fines. 

Edited May 10, 2023 by Volvobrick

[Kb27]

server breached usually due to incompetent IT.

[Inlinefour]

On 5/11/2023 at 7:48 AM, Kb27 said:

server breached usually due to incompetent IT.

might be outsourced to roti prata 🙊🙉🙈

[Jamesc]

On 5/11/2023 at 7:34 AM, Volvobrick said:

With only slap on the wrist punishment, companies won't take it seriously to beef up their efforts to protect consumer data one.... 

Much cheaper to pay the fines. 

Exactly.

Like a car maker knows the fuel tank is leaky.

To fix the problem is $13 but a millions car is 13 million.

Now if a car catches fire and burn the occupants its a million dollar law suit but how many 5 or 6?

So just pay 6 million is better than 13 million to fix the fuel tanks.

Save 7 million.

That's how companies work. 

But not the honest companies and if anyone sues me I didn't mean you as you are the honest one.

Not I believe but I don't want to get sued.

Big companies can afford more expensive lawyers than me. 

Edited May 11, 2023 by Jamesc

[Windwaver]

On 5/11/2023 at 7:34 AM, Volvobrick said:

With only slap on the wrist punishment, companies won't take it seriously to beef up their efforts to protect consumer data one.... 

Much cheaper to pay the fines. 

Really very serious this time, the softcopy of IDs are leaked.

[Volvobrick]

On 5/11/2023 at 10:06 AM, Windwaver said:

Really very serious this time, the softcopy of IDs are leaked.

Why keep such data? Last 4 digits enough. 

Well our data protection laws are paper tigers. 

[RadX]

goodbye whizzcomms

 

hello viewqwest