PETALING JAYA: The National Cyber Security Agency (Nacsa) is investigating a post made by a threat actor on a hacker forum that is allegedly offering live access to Malaysian government gateways and data for sale.

A Nacsa spokesperson told LifestyleTech that the agency is aware of the situation and is currently looking into the matter.

“We are still investigating. We can’t verify it yet. All claims by the actor have been escalated to relevant agencies to verify the authenticity. Some claims show inaccurate information.

“Some threat actors have a history of publishing recycled data and have claimed they are new ones. So their credibility is in question,” the spokesperson said.

The post on the data leak first appeared on Saturday (Aug 2). The hacker claimed to have breached at least 11 government portals, including those belonging to the Defence Ministry, Health Ministry, Higher Education Ministry, and the National Registration Department (JPN), among others.

Based on the sample data and screenshots shared in the post, the alleged leak includes “display names”, user IDs, passwords and IP addresses, along with screenshots that appear to show backend management dashboards.

The post also lists live access and data for sale at US$19,999 (RM84,645) in cryptocurrency.