1Cube and Pin Hwa High School (SMP Pin Hwa), two Malaysian educational entities, have allegedly been compromised after a significant database dump appeared on a popular cybercrime forum. The latest list of alleged victims posted by the group includes:
-
1Cube (🇲🇾): A Malaysian education management platform and mobile application service provider utilized by various schools for administrative and communication purposes.
-
Pin Hwa High School (🇲🇾): Also known as Sekoloh Menengah Pin Hwa, this is a prominent Chinese independent high school located in Klang, Malaysia.
The breach appears to involve a massive exfiltration of sensitive information belonging to both parents and students associated with these institutions. The seller is currently offering the data for $1,000, claiming the sale will be limited to a single buyer.
According to the actor, the allegedly compromised data is provided in CSV format and totals approximately 92.7 MB. The compromised data includes:
-
Full names (Parents and Students)
-
Phone numbers
-
Email addresses
-
National Registration Identity Card (NRIC) numbers
-
Birth certificate numbers
-
Student and Parent IDs
-
Family relationship details (e.g., Mother/Father)
-
School codes and class information
-
Last login timestamps
The seller provided samples of the data, which appear to show records dated as recently as late 2021, though the total volume suggests a comprehensive dump of the systems’ “parents” and “student” tables.
