• IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here.

    The OTHER forum is HERE so please stop asking.

Statement by MinLaw on a Data Breach Involving the System of a Third-Party IT Vendor Engaged by Licensed Moneylenders

whistling

whistling

Stupidman
Loyal

Statement by MinLaw on a Data Breach Involving the System of a Third-Party IT Vendor Engaged by Licensed Moneylenders

25 July 2024 Posted in Replies
  1. The Ministry of Law (MinLaw) has confirmed a data breach involving borrower data of 12 licensed moneylenders1 (LMLs) using the services of Ezynetic Pte Ltd (Ezynetic), a third-party IT vendor they engaged.
  1. Ezynetic’s system, which is not hosted on or linked to the Government’s network, was accessed by a malicious actor and data was leaked. The data contains personal identifiable information belonging to an estimated 128,000 clients of the 12 LMLs. Data of the remaining 8 LMLs who use Ezynetic’s services was not affected.
  1. The 12 LMLs and Ezynetic have made reports to the Police, the Cyber Security Agency of Singapore (CSA) and the Personal Data Protection Commission (PDPC). The LMLs have also begun notifying their borrowers of the breach and have reminded them to stay vigilant against possible phishing scams.
  1. As a containment measure, Credit Bureau (Singapore) Pte Ltd (CBS), which is the designated credit bureau that operates the Moneylenders Credit Bureau (MLCB) platform2, has restricted access to the platform for all 20 LMLs served by Ezynetic. MLCB’s online functions remain fully available to the other 133 LMLs in Singapore. Borrowers with queries may reach out to their respective LMLs for more information.
  1. MinLaw as regulator of LMLs takes a serious view of the data breach. The LMLs have a duty to protect any information in its possession or control. This includes information residing on their third party vendor systems.
  1. MinLaw is investigating the matter with CSA and PDPC. MinLaw is also in close contact with CBS to support affected LMLs’ business recovery efforts.
1. The 12 LMLs whose data was compromised are: (1) Ban King Credit (S) Pte Ltd, (2) Credit 21 Pte Ltd, (3) Lending Bee Pte Ltd, (4) Katong Credit Pte Ltd, (5) Credit Thirty3 Pte Ltd, (6) GS Credit Pte Ltd, (7) 1AP Capital Pte Ltd, (8) Creditmaster Pte Ltd, (9) BST Credit Pte Ltd, (10) U Credit (Pte) Ltd, (11) Horison Credit Pte Ltd, and (12) Credit Matters Pte Ltd.
2. MLCB is a central repository of data on borrowers’ loans and repayment records with all LMLs in Singapore. It allows LMLs to assess the creditworthiness of borrowers and make informed decisions when granting loan applications.

MINISTRY OF LAW
25 JULY 2024
Last updated on 25 July 2024
 
whistling

whistling

Stupidman
Loyal
MinLaw confirms personal data breach involving 128,000 clients of 12 licensed moneylenders - Mothership.SG
mothership.sg

untitled-97.png
The Ministry of Law (MinLaw) has confirmed a data breach involving the borrower data of 12 licensed moneylenders (LMLs) using the services of Ezynetic Pte Ltd (Ezynetic), a third-party IT vendor they engaged.
According to the press release on Jul. 25, data was leaked after Ezynetic’s system, which is not hosted on or linked to the Government’s network, was accessed by a malicious actor.
The data contains personal identifiable information belonging to an estimated 128,000 clients of the 12 LMLs.
According to MinLaw, the 12 LMLs whose data was compromised are:

  • Ban King Credit (S) Pte Ltd

  • Credit 21 Pte Ltd

  • Lending Bee Pte Ltd

  • Katong Credit Pte Ltd

  • Credit Thirty3 Pte Ltd

  • GS Credit Pte Ltd

  • 1AP Capital Pte Ltd

  • Creditmaster Pte Ltd

  • BST Credit Pte Ltd

  • U Credit (Pte) Ltd

  • Horison Credit Pte Ltd

  • Credit Matters Pte Ltd
The data of another eight LMLs who use Ezynetic’s services was not affected, MinLaw said.
MinLaw stated that the 12 LMLs and Ezynetic have made reports to the Police, the Cyber Security Agency of Singapore (CSA) and the Personal Data Protection Commission (PDPC).
The LMLs have also begun notifying their borrowers of the breach and have reminded them to stay vigilant against possible phishing scams, MinLaw added.

What's leaked​

Mothership has seen some of the leaked documents, which include borrower credit reports.
Each of these reports has the full personal details of the borrower, the person's employment, income, loan status and payment history.

Containment measures​

In a statement on Jul. 25, the Credit Bureau (Singapore) Pte Ltd (CBS), which is the designated credit bureau that operates the Moneylenders Credit Bureau (MLCB) platform, said it "promptly initiated an investigation" once it was alerted of the alleged data leak.
CBS said it "ascertained that the MLCB has not been compromised".
CBS said concerned consumers can reach out to its MLCB hotline at +65 6335 5897 or [email protected].
As a containment measure, MinLaw said that CBS has restricted access to the platform for all 20 LMLs served by Ezynetic.
MLCB’s online functions remain fully available to the other 133 LMLs in Singapore. Borrowers with queries may reach out to their respective LMLs for more information.
MinLaw said:
"MinLaw as regulator of LMLs takes a serious view of the data breach. The LMLs have a duty to protect any information in its possession or control.
This includes information residing on their third-party vendor systems."
Click to expand...
MinLaw is investigating the matter with CSA and PDPC and is in close contact with CBS to support affected LMLs’ business recovery efforts.
Top photos from MinLaw Facebook & Canva
If you like what you read, follow us on Facebook, Instagram, Twitter and Telegram to get the latest updates.
 
B

batman1

Alfrescian
Loyal
The way they announced the borrower data breach as if they are not involved or got no liability for the borrower data breach.
There is no more incentive or motivation to work hard diligently for the people. They have become complacent : they think they will win the next GE no matter how farked-up is their service or how much they overspent nobody dares to question them and make them accountable.Some of them also seems like don't know why they are in parliament ? Maybe just to collect the MP allowance? WHY No apology from the Minister of Law ?:biggrin:
 
whistling

whistling

Stupidman
Loyal
batman1 said:
The way they announced the borrower data breach as if they are not involved or got no liability for the borrower data breach.
There is no more incentive or motivation to work hard diligently for the people. They have become complacent : they think they will win the next GE no matter how farked-up is their service or how much they overspent nobody dares to question them and make them accountable.Some of them also seems like don't know why they are in parliament ? Maybe just to collect the MP allowance? WHY No apology from the Minister of Law ?:biggrin:
Click to expand...
very disgusting leaders we have
 
You must log in or register to reply here.

Similar threads

P
Serious Fullerton Healthcare Patient Data Including Bank Details Sold on Darkweb!
Replies
1
Views
523
laksaboy
laksaboy
P
Chitchat Guess??? Two former bankers in laundering case
Replies
4
Views
394
congo9
C
Papsmearer
Independent News Report on Iswaran corruption case
2
Replies
20
Views
2K
ODACHEK
ODACHEK
Scrooball (clone)
Chitchat Stickies Bar sticks it up employees’ arses (is Union doing anything?)
Replies
11
Views
979
k1976
k1976
lostvirgin
Syed Putra and friends demand more respect for delivery services.
2 3
Replies
41
Views
1K
True Believer
T
Top