MANILA, PHILIPPINES – Within this week, a series of data breaches, personal information from Toyota Makati, a renowned car dealership, Robinsons Malls, a prominent shopping mall chain, and S&R, a popular membership shopping club, has been compromised, affecting hundreds of thousands of customers.
Toyota Makati Data Breach:
An alleged data breach at Toyota Makati, discovered on May 29, 2024, has exposed over a terabyte of data spanning from 2016 to 2024. Toyota Makati is a leading dealership of Toyota vehicles and services, catering to a wide customer base. The compromised information includes:
- Full names
- Addresses
- Bank documents
- Valid IDs (such as passports and national IDs)
- Email addresses
- Photographs of bank documents and valid IDs
The database contains 311,594 rows of customer data. The threat actors claim to still have access to Toyota Makati’s phpMyAdmin and POS systems, putting this sensitive data at severe risk. This breach raises serious questions about the security protocols in place at Toyota Makati.
Robinsons Malls Data Breach:
On June 1, 2024, Deep Web Konek detected a data breach affecting approximately 107,000 customers of Robinsons Malls. Robinsons Malls is a prominent shopping mall chain in the Philippines, serving millions of customers annually. The breach was revealed on a dark web forum by a user known as “888,” who is selling the data online. The compromised information, reportedly sourced from the RMalls+ App, includes:
- Full names
- Email addresses
- Mobile numbers
- Birthdates
- Genders
- Provinces
- Cities
- Registration dates
This comprehensive dataset poses significant risks for identity theft, phishing attacks, and other malicious activities. The exposure of such extensive personal details has put many customers at high risk and demands immediate action from Robinsons Malls to secure their systems and data.
S&R Data Breach:
Today, a data breach at S&R has been reported which compromised the personal information of about 11,000 members. S&R is a popular membership shopping club, offering a range of products and services to its members. Detected by Deep Web Konek and claimed by a user named L00tz, the leaked data includes:
- Names
- Email addresses
- Phone numbers
- Home addresses
- Various personal identifiers
Despite the severity of the breach, S&R has yet to release an official statement regarding the incident. Similarly, Toyota Makati and Robinsons Malls have not issued any statements. Deep Web Konek has reached out for further coordination to assist in addressing the breaches.
Implications and Advice:
These breaches underscore the escalating threat of cyberattacks and the urgent need for robust cybersecurity practices across all sectors. Affected individuals are advised to remain vigilant against potential phishing attempts and identity theft. Recommended steps include regularly monitoring personal accounts, changing passwords, and being cautious of unsolicited communications.
Further updates will be provided as more information becomes available.