Law enforcement agencies got tipped off when someone tried to sell the stolen database in an internet forum.
On Wednesday, Salleh Said Keruak Malaysia’s Communications and Multimedia Minister said, the country is investigating the alleged attempt to sell stolen data related to 46 million mobile phone users in the company.
Malaysia has recently suffered a major data breach in which telephone subscriber data from at least 12 of the country’s mobile phone operators have been hacked and stolen.
The massive data breach was reported last month by Lowyat.net, a local technology news website, which said it had received a tip-off that someone was trying to sell huge databases of personal information on its forums.
Malaysia’s internet regulator, the Malaysian Communications and Multimedia Commission (MCMC), is now investigating the matter along with the local police.
“We have identified several potential sources of the leak and we should be able to complete the probe soon,” said Salleh to reporters at parliament.
On Monday, Lowyat.net said the stolen data was being sold for an undisclosed amount of Bitcoins.
The stolen data includes, identification card numbers, phone numbers, home addresses, and SIM card data for 46.2 million customers from at least 12 Malaysian mobile phone operators.
While Malaysia’s population is around 32 million, many consumers have multiple mobile numbers.
According to Malaysian daily The Star, the stolen data also includes inactive and temporary numbers of foreign visitors.
According to state news agency Bernama, Malasia’s telecom regulator had met with local telecommunications companies to seek their cooperation in the investigation.
Significantly, the stolen data also includes private information of more than 80,000 individuals pertaining to the Malaysian Dental Association, the Malaysian Medical Council and the Malaysian Medical Association, said Lowyat.net.