A stock brokerage firm, UOB KayHian, fell victim to the DESORDEN GROUP.
DESORDEN neither attempted to lock nor delete any of the firm’s files but focused on extracting data quickly.
The group breached 159,807 records of UOB Kay Hian Malaysia customers, including their full name, gender, religion, birthdate, nationality, IC number, passport, email, phone number, and address. Other data include their dealers, back office users, etc.
Source: https://www.databreaches.net/malaysian-online-stock-brokerage-firm-victim-of-cyberattack/
TPRM report: https://scoringcyber.rankiteo.com/company/uob-kay-hian
"id": "uob1058131222",
"linkid": "uob-kay-hian",
"type": "Breach",
"date": "10/2022",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 159807,
'industry': 'Finance',
'location': 'Malaysia',
'name': 'UOB KayHian',
'type': 'Stock Brokerage Firm'}],
'attack_vector': 'Data Exfiltration',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 159807,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Contact Information']},
'description': 'UOB KayHian, a stock brokerage firm, fell victim to the '
'DESORDEN GROUP. The group focused on extracting data quickly '
'rather than locking or deleting files. The breach compromised '
'159,807 records of UOB Kay Hian Malaysia customers, including '
'personal and contact information.',
'impact': {'data_compromised': ['Full name',
'Gender',
'Religion',
'Birthdate',
'Nationality',
'IC number',
'Passport',
'Email',
'Phone number',
'Address']},
'motivation': 'Data Theft',
'threat_actor': 'DESORDEN GROUP',
'title': 'Data Breach at UOB KayHian by DESORDEN GROUP',
'type': 'Data Breach'}