HKBN

The company announces a plan to remove data from 900,000 former customers and shorten the time it keeps information to six months.

The hacked personal information of 380,000 current and former customers was stored in an unencrypted database.

The compromised database was the only one that lacked encryption, stressing the others were all safe.

Hong Kong ID card numbers would have two digits randomly deleted, as well as the digit in brackets.

For credit card numbers, the company would delete the seventh to 12th digits.

The company received 1,000 complaints and more than 10 customers terminated their contracts.

The database held information of about 380,000 former and existing customer records for the firm’s residential broadband and IDD services from 2012, which is about 11 percent of the company’s 3.6 million customer records.

The records held information including names, email addresses, home addresses, telephone numbers, ID card numbers, and information on about 43,000 credit cards.

Source: https://www.scmp.com/news/hong-kong/economy/article/2142981/hong-kong-broadband-provider-revamp-way-it-stores-customer

"id": "HKB213922622",
"linkid": "hong-kong-broadband-network",
"type": "Data Leak",
"date": "04/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"