KUALA LUMPUR: Initial investigations indicate that a “sophisticated” and “discreet” hacking method was used in the recent cyberattack on Prasarana Malaysia Bhd, says the Digital Ministry.

The ministry conducted a preliminary investigation into the incident through the Personal Data Protection Commissioner's Office.

In a parliamentary written reply dated Feb 12, the ministry said that Prasarana’s security system had been unable to detect the unauthorised access due to the advanced and discreet hacking technique employed.

Following the breach, Prasarana has strengthened its system security.

“Prasarana has given its full cooperation and provided all required information throughout the investigation process,” it said.

The ministry added that investigations are still ongoing, and the Commissioner’s Office will conduct further checks.

The ministry was responding to a question from Ahmad Fadhli Shaari (PN-Pasir Mas) regarding the findings of the investigation into the company’s data system.

On August 25, 2024, FalconFeeds.io, a threat intelligence platform, posted on X alleging that Prasarana had been targeted in a cybersecurity incident. It claimed that a ransomware group had obtained 316GB of data and intended to publish it.

Prasarana, the owner and operator of Malaysia’s rail services, including the LRT networks, KL Monorail, and MRT lines, later confirmed that a cybersecurity breach had affected part of its internal systems.

The Commissioner’s Office was informed of the incident on Aug 26 and subsequently instructed Prasarana to issue a Data Breach Notification (DBN) by Aug 29, which the company complied with.