The Personal Data Protection Commission (PDPC) Eagle Eye has uncovered a claim that 165GB of data belonging to OPPO Thailand is being sold on the Dark Web. This data includes detailed personal information of customers, HR employee data, and internal operational data from OPPO Thailand’s platform. The asking price for this data is set at $20,000 or approximately 680,000 baht.
PDPC Eagle Eye has notified OPPO to swiftly conduct a risk assessment to prevent and address the breach, and to report their findings within 72 hours. This will determine whether an actual violation has occurred. If found to be non-compliant with the Personal Data Protection Act (PDPA), the PDPC will investigate, gather evidence, and report to the expert committee for further regulatory action.
Source: Press Release
TLDR: PDPC Eagle Eye has discovered alleged sale of OPPO Thailand’s data on the Dark Web, prompting swift action and investigation by OPPO to assess and address the breach as per PDPA regulations.
Leave a Comment