KUALA LUMPUR: The preliminary analysis of evidence presented over the alleged MyKad data breach does not indicate a recent breach, says the National Cyber Security Agency (Nacsa).
A Nacsa official said the agency, through the National Cyber Coordination and Command Centre (NC4), has not received any incident reports related to MyKAD from the National Registration Department (NRD).
"Based on NC4, Nacsa's preliminary analysis, the samples presented as evidence of MyKad data breach are dated between 2015 and 2017, indicating they are not part of a recent breach.
"These outdated samples have been circulated in online forums without any credible confirmation of their relevance to any current security incident," he told the New Straits Times.
The agency advised organisations and the public to exercise caution and remain vigilant against potential threats targeting personal data.
"Avoid sharing personal data online unnecessarily and follow best practices for data protection.
"Nacsa is constantly monitoring this situation and working with other law enforcement agencies," it said, adding that it was committed to ensuring that the sovereignty and security of the country is preserved.
Earlier today, Nacsa said it had launched an investigation into reports of a massive data breach involving the MyKad details of 17 million Malaysians, which were allegedly being sold on the dark web.
The media reported that Nacsa had deployed its experts to verify the allegations and assess the scale of the potential data compromise.