Police, PDPC probing massive leak of K Box members' details
[UPDATED 17/9/2014 AT 7.40AM: Added statement from K Box Chief Operating Officer]
Singapore police are looking into the extensive leak of personal information belonging to over 300,000 K Box members.
The Personal Data Protection Commisiion (PDPC) has also contacted K Box to look into the incident.
A PDPC spokesman was quoted by Today Online as saying that it is "concerned about the scale of the alleged disclosure of individuals' personal data".
Under the Personal Data Protection Act, organisations are required to make the necessary security arrangements needed to safeguard personal data in their possesion as well as prevent unauthorised access, collection use or similar risks.
Phone numbers, birthdays and other personal details of over 300,000 karaoke outlet operator K Box Singapore members have reportedly been leaked online.
According to a news report by Channel NewsAsia (CNA), a group called “The Knowns” claimed responsibility for circulating the list of details.
The list, which was emailed to several media outlets at around 4.15am on Tuesday, appeared to be accurate, and included names of members, their phone numbers, email addresses and membership data, said CNA.
One K Box member told Yahoo Singapore that she had not been contacted by the karaoke chain about the leak.
In an email accompanying the leaked details, The Knowns reportedly said they shared the details in response to the recent toll increase at Woodlands, describing it as an “unnecessary financial burden on working Malaysians”.
K Box Chief Operating Officer Ms Priscilla Ng said in a statement that K Box takes data theft and the publication of the stolen data "very seriously" and is conducting a full internal investigation. She said, "Steps are being taken to remove the stolen data and hold those responsible for this deplorable act wholly accountable to the fullest extent of the law."
As of Wednesday, K Box said it was able to remove the stolent data from at least three websites.
