Carousell

“In conclusion, the data leakage incident has revealed that Carousell has made fundamental errors in protecting the safety of the personal data held by this group. It is very disappointing,” Chung said.

• Reported on Oct 2022, loophole in system migration process began in Jan 2022

• Record 73% HK companies hit by cyberattacks; issue resolved in Sep 2022 but loophole had not been exploited

Data types:

• Email addresses

• Phone numbers

• Birthdays, birth months and years

• And others