Carousell Singapore Data Breach Reportedly Affects Some Malaysians

Recently, Carousell Singapore has suffered a data breach but unfortunately, it has also affected a number of Malaysian users as well.

Carousell Singapore Data Breach

Carousell Singapore has confirmed that they suffered a data breach recently. It’s been said that a database containing data from over 2.6 million users have been placed on sale in an undisclosed online forum.

The data breach, which occurred on 14th October 2022, was said to have been caused by a bug during system migration, and it was exploited by a 3rd party to gain unauthorized access to the data. This includes email address, phone number, and date of birth.

According to local website SoyaCincau, 5 copies of the leaked databased has been offered for USD $1,000 (RM4,738), and two of them were successfully sold off. It is said that the database is 2.5GB in size with over 5.5 million records, though it has been filtered down to 2.6 million to show specifically unique email addresses.

The seller has provided a sample of this data, a small one of just 1,000 individuals, but it also apparently included Malaysian users. Carousell Singapore mentioned that they have already taken the necessary actions and fixed the bug to prevent further unauthorized accesses. They will be contacting users affected by the data breach.

Source

Pokdepinion: If I were you, I would change my password right now, just in case. You never know with these kind of things sometimes.