Kingsforce Management Services Addresses Data Breach and Outlines Future Security Measures
Dear valued community members,
We regret to inform you that in December 2021, our organization experienced a data breach. We apologize for the delay in addressing this issue while the investigation was ongoing. Now that the case has been concluded, we want to provide you with an update.
We are pleased to inform you that the Personal Data Protection Commission (PDPC) has acknowledged that although we had a breach resulting in the sale of jobseekers’ personal information on the now-defunct RaidForums, Kingsforce took immediate action to rectify the situation. If you are interested, you can refer to the media report from May 15th for more information.
Regardless of the authority’s enforcement, we want to emphasize that we have an ongoing obligation to protect the personal information entrusted to us and will only use it for the purpose of providing a secure platform for job matching between job seekers and employers.
Why did the breach occur?
Briefly, Kingsforce has been operating since 1994 and over the years, our platform has undergone several platform revisions. Unfortunately, the last version of our website (the 4th version) was delayed for five years due to vendors’ non-performance. As a result, the platform contained outdated coding that could not be patched.
The good news is that we immediately took down the old platform and are currently working on a new one, which will be ready by around June to July. Please stay tuned for further updates.
We reiterate that we are accountable for the breach, but we accept the responsibility. The suspension of our website upon being informed of the breach was painful, but we concluded that it was inevitable though business would suffer substantiable losses.
Finally, working on the incident with the PDPC was a good experience. In deciding enforcement against us, the PDPC considered several factors like taking down the website and other security measures implemented. The PDPC has issued a directive (instead of a fine) and required us to ensure access to personal data is secured.
Spam, illegal access, and hacking are unfortunately common in today’s technology landscape. This incident has given us a better understanding of these issues, and we are committed to doing our best to secure registered users’ information through our implemented plan.
We sincerely apologize for any disappointment or inconvenience caused and hope that you will continue to support us. If you have any questions or concerns, please don’t hesitate to contact us.
Thank you.
Kingsforce Management Services Pte Ltd