Alleged hack of MLCB and CBS: Sensitive borrower data appear...

A hacker group identifying themselves as GhostR has claimed responsibility for a massive data breach involving the Moneylenders Credit Bureau (MLCB) and Credit Bureau (Singapore) Pte Ltd (CBS). The breach, which allegedly took place on 14 June 2024, has compromised 54.6GB of data, including 324,362 MLCB reports of individuals in Singapore -- locals and foreigners. MLCB serves as a central repository for borrowers' loan and repayment histories with licensed money lenders in Singapore, and its reports are crucial for assessing creditworthiness and preventing excessive borrowing. It operates under the purview of Singapore's Ministry of Law (MinLaw). CBS, a subsidiary of SGX-listed Credit Bureau Asia (CBA), operates the MLCB system under the designation of MinLaw. GhostR stated in an email to The Online Citizen that they had informed MLCB and CBS about the data compromise on 28 June 2024...