Thailand Poseify Group Co Ltd reports data breach

Poseify Group Co Ltd, Oppo's Thailand distributor, is reporting a data breach. The incident was initially reported to law enforcement on December 13, 2024, and formally notified to the Personal Data Protection Center (PDPC Eagle Eye).

Oppo is a major Chinese consumer electronics manufacturer, founded in 2004. The company is known for smartphones, audio devices, and other consumer electronics.

The breach was discovered when PDPC Eagle Eye detected web listings on January 23, where a threat actor using the alias "SSL_Dragon" advertised 165GB of allegedly stolen data for sale at US$20,000 (approximately 680,000 baht).

The compromised data reportedly includes:

• Internal system databases
• Customer information
• Employee data

The attack vector and number of affected individuals is not disclosed. The company emphasized this incident is unrelated to previous loan application issues.

The company has initiated an investigation in cooperation with relevant authorities. They've stated their commitment to pursue legal action if the breach is confirmed and implement measures to protect affected parties' data.

Oppo users are advised to change their Oppo account passwords and on all accounts sharing similar/same passwords, monitor their bank account activity and be careful of phishing attempts.