Singapore pay TV, internet and mobile phone provider StarHub is in the process of notifying 57,191 customers via email that they are victims of a cyber attack that leaked national identity card numbers, mobile numbers and email addresses.
An August 11th email notifying a customer of the leak was obtained by The Register and reads:
During a proactive online surveillance earlier this month, we discovered, on a third-party data dump website, an illegally uploaded file containing certain limited types of personal information related to your StarHub subscription from before 2007.
In the email, StarHub explains that there is no current evidence that information has been misused, and that an incident management team assessed the situation. Investigations by digital forensic and cybersecurity experts are ongoing.
StarHub claims credit card and bank account information was not compromised, but has nonetheless offered all affected customers six months of free credit monitoring, as long as they act by September 5. Emails will continue to go out to leak victims until August 20, 2021.