In a troubling development for Malaysia’s digital infrastructure, a hacker operating under the alias “Bigbrother” has allegedly breached over a dozen government websites, offering access and stolen data for sale on a dark web forum.
What’s at Stake?
Screenshots posted by the hacker suggest access to systems belonging to key agencies such as the National Registration Department, MyGovernment portal, Radio Televisyen Malaysia, and the ministries of health, defence, foreign affairs, and higher education. The data is being offered for US$20,000 (~RM85,500), with payment accepted in Monero cryptocurrency—a choice often favoured for its anonymity.
The compromised data reportedly includes:
- VPN account credentials
- Shell access to servers
- Network and web database configurations
- Subdomain details
- Local file-sharing information
Expert Take
An anonymous IT expert told MalaysiaNow that the asking price is unusually low, hinting that the breach may have been carried out by inexperienced individuals or opportunistic actors unaware of the data’s true value.
This incident comes amid a reported 29% surge in data breaches in Malaysia this year. Cybersecurity Malaysia logged 195 breach reports in Q1 2025 alone, up from 151 in Q4 2024.
What’s Next?
Authorities have been alerted, and investigations are underway. The full scope and sensitivity of the stolen data remain unverified, but the breach underscores the urgent need for stronger cybersecurity protocols across public sector systems.
This won't be the first or last time a Malaysian government website has been hacked. However, there are a couple of times when known public figures like to use that excuse to defend themselves from embarrassing online activities. Stay tuned for more trending tech news at TechNave.com.
COMMENTS