Maxis has issued a response regarding the alleged R00TK1T attack which we’ve reported earlier today. In its official statement, the telco says it immediately launched an investigation to determine the validity of the supposed breach, but did not identify anything related to its own systems.
However, Maxis noted that it did discover a suspected incident involving unauthorised access to one of its third-party vendor systems that resides outside of its internal network environment. In light of this, it is currently working with the vendor, which it did not specifically identify, to investigate further. Additionally, the telco says it has informed relevant authorities regarding the situation.
“Our customers’ privacy and security are of the utmost importance to us, and our ongoing priority is a thorough assessment and containment,” Maxis said in the statement. “Additional defence measures are also being put in place to enhance the robustness of our systems with a view to reducing further risk.”
In case you missed it, hacker group R00TK1T earlier today claims that it has gained access to Maxis’ backend system. It is also threatening to release customer data acquired from the alleged attack, as well as exposing the vulnerabilities of the telco’s security systems.
Maxis is the R00TK1T’s latest victim since it first threatened to attack Malaysia’s digital infrastructure last week, alongside local comms provider Aminia and online course provider Yoututor. The telco says it will continue to provide necessary updates on developments regarding the matter.
(Source: Maxis press statement)
Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news.