On April 24, 2025, several brokers reported unauthorized access and failed logins on client trading accounts in Malaysia. The Securities Commission Malaysia (SC) and Bursa Malaysia took immediate action to address the issue. They advised brokers to prompt clients to reset passwords and implement stricter security measures, such as multi-factor authentication. The regulators are closely monitoring the situation to ensure no further unauthorized access or trading activities occur.
Bursa Malaysia clarified that the unauthorized trades were confined to a small number of brokers, specifically affecting Bina Puri Holdings Bhd and its Warrant-B. The incident was isolated, and the losses from the unauthorized trading were contained. The exchange, in collaboration with regulators, has been working transparently to resolve the issue. Affected brokers have been directed to retain relevant securities and proceeds for 14 days to facilitate investigations.
In response to the incident, Bursa Malaysia has issued directives to the brokers and implemented additional measures to strengthen internal controls and cybersecurity defenses. Capital market regulators continue to investigate the root cause of the breach with a forensic audit. The aim is to ensure such breaches do not occur again and that market integrity is upheld.
Despite the breach, Bursa Malaysia has reassured investors that the capital market remains secure, and operations will continue as usual. The market is accessible and orderly, with authorities committed to maintaining a fair trading environment. The investigation into the breach is ongoing, and measures to prevent further incidents are being implemented.
Reference:
