DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Another Malaysia carrier allegedly hacked and data exfiltrated — Skynet

Posted on October 1, 2021 by Dissent

Desorden Group, who recently claimed to have successfully breached ABX Express, has contacted DataBreaches.net to report yet another logistics firm breach. This time, the claimed victim is Skynet.com.my.  Skynet is a  carrier company in Malaysia that provides  domestic and international carrier services.

Desorden Group provided DataBreaches.net with proof of claim — a video taken showing Skynet’s folders, and some of the files within the folders.  One file included 10,000 airwaybill records, while another .csv file contained information on 3,600 employees. Personal information in the files included names, date of birth, account numbers, phone numbers, address, email addresses, encrypted passwords but also passwords in plaintext, and more.

A message included with the video to Skynet reads:

THIS IS DESORDEN GROUP. WE HAVE HACKED AND BREACHED SKYNET.COM.MY SERVERS FOR 3 WEEKS AND STOLEN MAJORITY OF THE DATABASES, RANGING FROM CORPORATE, FINANCIAL TO CUSTOMER PERSONAL DATA.

WE KNOW YOUR IT DEPARTMENT HAS DISCOVERED THE DATA BREACH ON 27TH SEPTEMBER 2021 AND CLOSED ONE OF THE MANY VULNERABILITIES WHICH WERE USED TO BREACH YOUR SERVERS.

HERE IS A VIDEO RECORDING OF YOUR FILES AND DATABASES FOR VERIFICATION.

According to Desorden Group, the breach involves millions of Malaysian customers’ data.  And as with the ABX Express breach, Desorder claims that Shopee and Lazada customer data is caught up in the breach. Lazada had never responded to DataBreaches.net’s inquiries about the ABX Express, and DataBreaches.net has now reached out to them again to ask what they are doing in response to these claims.

Kerry Logistics never responded to the ABX Express breach, and this site has reached out to them again, too.

DataBreaches.net has also reached out to Cybersecurity Malaysia to see what they can tell us about their efforts to deal with the rising cybercrime in the business sector.

A popular forum where Desorden Group had posted notices about their databases, is not reachable this morning on clearnet, but is reachable on Tor. Whether there is any connection between specific posts on that forum and what is going on is unknown. In recent months, the forum has listed a number of hacks or leaks from ASEAN countries, including some very large firms. Last month, threat actors known as ALTDOS reported that some of their servers had been taken down by their host, but they did not know at whose request or under what legal process.  Desorden posted the Skynet incident within the last 12 hours to the same forum ALTDOS has used to list its hacks and leaks. And then the forum was no longer reachable…?

Image: Redacted by DataBreaches.net

Is the forum being down on clearnet related to all the recent uptick in posts from Malaysia and other ASEAN countries or is this a coincidence?  DataBreaches.net will be watching the situation.

Updated 11:55 am:  RaidForums is back online on clearnet. 

 

Related posts:

  • Forbes Breach Email Statistics
  • Desorden Group claims to have stolen 200 GB of data from ABX Express
  • TeamGhostShell posts “master list” of 548 leaks (so far)
  • Thai entities continue to fall prey to cyberattacks and leaks
Category: Breach IncidentsHackNon-U.S.

Post navigation

← Former OnlyFans Employees Could Access Users’ and Models’ Personal Information
Pottawatomie Co. pays hackers to restore computer systems after cyber attack →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.