The sayakenahack.com website verifies if your personal data has been compromised.
Updated: Malaysian Communications and Multimedia Commission (MCMC) has blocked the sayakenahack.com website after receiving an application from the Data Privacy Protection Department under Section 130 of the Data Privacy Act, which states that any disclosure of private information without the consent of users through any platform, including the Internet, is an offence. Reportedly, Lowyat.net founder Vijandren Ramadass, however, believed that the block was due to unscrupulous individuals exploiting the service offered by the website.
Tech blogger Keith Rozario set up the sayakenhack.com website to help Malaysians verify if they are affected by one of the country’s largest data breaches, involving 46.2 million phone numbers, MyKad numbers and addresses, among other personal information.
“Since MyKad numbers and names are pretty much permanent, if you are a victim once, you are a victim for the rest of your life. There’s no way to undo it.
“You can download the data today and execute an operation three years down the road and you could have an 80% success rate because the details won’t change,” Rozario told The Star, adding that scammers could use the victims’ personal information to gain their trust and trick them into revealing more information.
He said he designed the website to not reveal more information than necessary, keeping pertinent details hidden.
“The phone numbers are masked. Only the first three numbers and the last two digits are shown so you can verify if it is correct. But for someone randomly typing in MyKad numbers into the system, there are about five numbers still masked, so it is unlikely they will get it,” he was quoted as saying.
The sayakenahack.com website, with a simple minimalist design, allows you to key in your MyKad number and check if your personal data has been compromised. If you were, the website would reveal what information, for example, your phone number or address, was breached.
The purpose of the website is to allow you to know that your personal data is out there as, beyond that, there is not much you can do.
As Rozario pointed out, you can’t be issued a new MyKad number or change your name, and you can’t really change your address.
Reportedly, more than 50,000 Malaysians have checked on the website to see if they were part of the data leak.
Meanwhile, The Star reported today after doing a check with their identity card number on sayakenahack.com, many people discovered that handphone numbers they never registered for have been linked to their MyKad.
According to the daily, a company secretary who did not wish to be identified was shocked to find out that a prepaid number is listed as hers although she has never been a customer of that telco.
“I have always been using another telco and my only number is a supplementary line to my husband’s for almost 15 years now. I’m guessing my personal information was stolen to register that prepaid number,” she was quoted as saying.
An engineer who wished to be identified only as Tan, 36, was surprised to find three mobile numbers linked to him when he only has two, the report said.
Malaysian Communications and Multimedia Commission (MCMC) network security and enforcement sector chief officer Zulkarnain Mohd Yassin advised mobile subscribers who have discovered a breach to check again with their service providers on accounts under their names and MyKad number.
“The service providers have facilities to check these numbers. We also advise users to lodge a report with their service providers and the MCMC.
“We are serious about this. That’s why you see many compounds issued by the MCMC to service providers in respect of non-compliance with the guidelines of prepaid registrations,” he was quoted as saying by The Star.