KUALA LUMPUR – CyberSecurity Malaysia (CSM) has delivered a report to the National Cyber Security Agency (Nacsa) regarding online safety threats made by hacker group R00TK1T, said Deputy Digital Minister Datuk Ugak Kumbong (Hulu Rajang-GPS).
Speaking in the Dewan Rakyat today, Ugak said that through CSM, the ministry had been closely monitoring threats orchestrated by R00TK1T, which recently hacked several government systems.
“CSM detected 70 postings (by R00TK1T) and analysis on the content found that there were 38 incidents involving cyber safety,” Ugak said during Minister’s Question Time in the lower House.
“Since this is a matter that involves national safety, CSM has extended a report to Nacsa for further action.”
Ugak was responding to a supplementary question from Ahmad Johnie Zawawi (Igan-GPS), who expressed concern over cyberattacks purportedly executed by R00TK1T.
“Lately, we’ve been hearing a lot about many instances of cyber breaches. The people are doubtful and angry (over) the safety of their personal data, (especially when) messages of R00TK1T’s attacks are circulated online,” Johnie said.
He also questioned the deputy minister on the government’s strategy in cracking down on the sale of data through black-market sites, an activity which he said was gaining more traction among irresponsible hackers.
Yesterday, Youth and Sports Minister Hannah Yeoh (Segambut-PH) confirmed that the ministry’s cloud application was hacked on March 16.
The minister also assured that no private information was leaked as the hacked documents were only administrative files, adding that CSM and Nacsa were informed of the breach.
While Yeoh did not mention the perpetrators behind the attack, R00TK1T had also posted a message in its Telegram group on March 16, claiming to have gained “direct access” to the ministry’s cloud infrastructure.
The group has previously hacked into a National Population and Family Development Board server and threatened to shut down Maxis Bhd’s network.
Last week, Digital Minister Gobind Singh Deo (Damansara-PH) told the Dewan Rakyat that the government had not entered into any negotiations or agreements with R00TK1T, following the threats to Maxis.
He also confirmed that a stand-alone system not connected to any of the company’s critical systems was affected by the hacker group’s attack. – March 19, 2024