Identify Hacker Holding Personal Data of 55 Million Thais

[reader]

From Thai News Agency

BANGKOK, April 4 (TNA) – The police can identify the hacker who claims he holds personal data of 55 million Thai people, stolen from a government agency.

The police are now investigating to find out if more people are involved in the data hack.

Pol Gen Damrongsak Kittiprapas ordered the Cyber Crime Investigation Bureau to accelerate investigation into the hacker named “9near” who posted on BreachForum, claiming that he had personal data of more than 55 million Thais leaked from a government agency, said Pol Lt Gen Archayon Kraithong, spokesperson of the Royal Thai Police.

Initially, the police know what agency the hacker got the data from but it cannot be revealed.

The hacker posted examples of the data with people’s names, surnames, addresses, birthdates, phone numbers and ID card numbers. He also threatened the owners of information by sending them SMS. (TNA)

 

[reader]

From The Thaiger

Army suspends AWOL sergeant major turned cyberpunk

The sergeant major turned cyberpunk who was accused of hacking the personal data of 55 million Thais has been suspended by the Royal Thai Army (RTA). Police on Friday reported that the suspect and his wife were detained and questioned about the alleged crime, but the couple has since disappeared.

Maj. Gen. Sirichan Ngathong, the deputy spokesperson, stated that “SM2 Khemarat’s unit” suspended him on Friday, April 7 for being absent without leave (AWOL) since April 3. The suspect works as a driver in the Army Transportation Department. The sergeant major was issued an arrest warrant for computer crime, leading to his suspension, reported Bangkok Post.

Maj. Gen. Sirichan reiterated that the army is doing everything possible to locate the suspect and that the alleged crime was a personal matter rather than a military operation.

The suspect allegedly obtained the personal information of millions of people, including their names, surnames, addresses, birthdates, ID card numbers, and telephone numbers, from the Mor Prom app. The suspect’s wife, who is a nurse, also had access to the database.

 

The Mor Prom app was initially developed by the Public Health Ministry to help implement Covid-19 controls during the pandemic. It was later expanded to serve as a health service portal.

The RTA on Sunday was accused of delaying the arrest of the sergeant major. But the RTA say that despite approaching the suspect’s supervisors and family, investigators have been unable to contact him.

Maj. Gen. Sirichan responded to a report stating that the police had given the suspect seven days to surrender. She also stated that the army had formed a committee to investigate disciplinary action against the sergeant major for damaging the army’s reputation.

 

Responding to reports that the suspect had the support of an influential person, Maj. Gen. Sirichan stated that any soldiers suspected of wrongdoing would not be protected.

 

The hacker threatened to disclose the information if a government agency allegedly involved in the data breach did not meet his ransom demand last week.

================================

 

From CNBC

FBI warns against using public phone charging stations

The FBI recently warned consumers against using free public charging stations, saying crooks have managed to hijack public chargers that can infect devices with malware, or software that can give hackers access to your phone, tablet or computer.

“Avoid using free charging stations in airports, hotels or shopping centers,” a tweet from the FBI’s Denver field office said. “Bad actors have figured out ways to use public USB ports to introduce malware and monitoring software onto devices. Carry your own charger and USB cord and use an electrical outlet instead.”

Consumer devices with compromised USB cables can be hijacked through software that can then siphon off usernames and passwords, the FCC warned at the time. The commission told consumers to avoid those public stations.

 

[khaolakguy]

Hmmm. I wonder if he, and his wife, will be found alive. Threatening the powerful, which the sharing of such information would do, tends not to end well, especially in Thailand. Too many vested interests.

[reader]

Authorities suddenly appear to be going out of their way to play down the huge cyber theft. I'm sure it has nothing to do with the May elections.

From The Nation

Hacker ”9Near”, who is accused of stealing personal data of 55 million Thais, has nothing to do with Thai politics, Digital Economy and Society Minister Chaiwut Thanakamanusorn said on Wednesday.

Thai authorities began a hunt for the hacker on April 2 after he announced on the Breach Forum website that he had obtained the personal data of 55 million Thai nationals. He claimed the data included names, surnames, date of birth, ID card and telephone numbers.

The Breach Forum website is a place where personal data leaked from state agencies or private firms are bought and sold.

The Criminal Court, on April 3, ordered a block on the website, 9near.org, and any websites found publishing data from 9near.org.

Army Transportation Department officer Sgt-Major Second Class Khemarat Boonchuay, who is suspected to be the hacker, surrendered to cyber police on April 7.

Khemarat has been accused of violating the Computer-related Crime Act and Personal Data Protection Act.

Cyber police have confiscated Khemarat's hacking equipment at his residence in Nonthaburi.

The suspect's wife would be charged with being an accomplice if they find evidence, the police said.