Telekom Malaysia
Company Details
Linkedin ID:
telekom-malaysia
Website:
Employees number:
10,536
Number of followers:
256,718
NAICS:
517
Industry Type:
Homepage:
tm.com.my
IP Addresses:
0
Company ID:
TEL_4618838
Scan Status:
In-progress
Telekom Malaysia Company CyberSecurity Posture
tm.com.my
TM is the national connectivity and digital infrastructure provider and Malaysia’s leading integrated telco; offering a comprehensive suite of communication services and solutions in fixed (telephony and broadband), mobility, content, WiFi, ICT, Cloud and smart services. TM is driven by stakeholder value creation in a highly competitive environment and places, emphasis on delivering an enhanced customer experience via continuous customer service quality improvements and innovations, whilst focusing on increased operational efficiency and productivity. As the enabler of the nation’s Digital Malaysia aspiration, TM has been at the forefront of every telecommunications technology evolution in the country and will continue to do so. It provides the communications backbone of Malaysia with the widest connectivity and convergence network. TM remains committed to expanding its network with a comprehensive digital infrastructure. Moving beyond connectivity services, TM is developing new value-added digital services to cater to a more digital lifestyle and society, digital businesses, and digital government, striving to make “Life and Business Easier, for a better Malaysia.” For further information on TM, visit www.tm.com.my. . SSM: 128740-P
Telekom Malaysia A.I CyberSecurity Scoring
Telekom Malaysia Risk Score (AI oriented)Between 700 and 749
Telekom Malaysia
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Telekom Malaysia Global Score (TPRM)XXXX
Telekom Malaysia
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Telekom Malaysia Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Telekom Malaysia
Data Leak
Rankiteo Explanation
Attack without any consequences
Description: Telekom Malaysia Bhd (TM) said its 250,248 Unifi Mobile customers were affected by a data breach on Dec 28. The breach comprised both Unifi Mobile’s individual customers as well as small and medium enterprises (SMEs). The data involved in the breach included customer names, phone numbers and emails.
Telekom Malaysia Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Telekom Malaysia
Incidents vs Telecommunications Industry Average (This Year)
No incidents recorded for Telekom Malaysia in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Telekom Malaysia in 2026.
Incident Types Telekom Malaysia vs Telecommunications Industry Avg (This Year)
No incidents recorded for Telekom Malaysia in 2026.
Incident History — Telekom Malaysia (X = Date, Y = Severity)
Telekom Malaysia cyber incidents detection timeline including parent company and subsidiaries
Telekom Malaysia Company Subsidiaries
TM is the national connectivity and digital infrastructure provider and Malaysia’s leading integrated telco; offering a comprehensive suite of communication services and solutions in fixed (telephony and broadband), mobility, content, WiFi, ICT, Cloud and smart services. TM is driven by stakeholder value creation in a highly competitive environment and places, emphasis on delivering an enhanced customer experience via continuous customer service quality improvements and innovations, whilst focusing on increased operational efficiency and productivity. As the enabler of the nation’s Digital Malaysia aspiration, TM has been at the forefront of every telecommunications technology evolution in the country and will continue to do so. It provides the communications backbone of Malaysia with the widest connectivity and convergence network. TM remains committed to expanding its network with a comprehensive digital infrastructure. Moving beyond connectivity services, TM is developing new value-added digital services to cater to a more digital lifestyle and society, digital businesses, and digital government, striving to make “Life and Business Easier, for a better Malaysia.” For further information on TM, visit www.tm.com.my. . SSM: 128740-P
Loading...
Telekom Malaysia Similar Companies
Idea Cellular Ltd
Idea Cellular is an Aditya Birla Group Company, India's first truly multinational corporation. Idea is a pan-India integrated GSM operator offering 2G and 3G services, and has its own NLD and ILD operations, and ISP license. With revenue in excess of $4 billion; revenue market share of 18%; and subs
Openreach
We’re the people that make the net work. As the nation’s largest wholesale broadband network, we’re rolling out Ultrafast Full Fibre broadband across the UK. It’s our fastest and most reliable broadband yet, and we’re well on our way to making it available to 25m homes and businesses – building the
Vodafone
At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live, we protect the planet a
ZTE Corporation
ZTE connects the world with continuous innovation for a better future. The company provides innovative technologies and integrated solutions, and its portfolio spans communication networks, computing infrastructure, industry digital solutions, and personal and home smart terminals. Serving one t
Telstra
We believe it’s people who give purpose to our technology. So we’re committed to staying close to our customers and providing them the best experience. And delivering the best tech. On the best network. Because our purpose is to build a connected future so everyone can thrive. We build techno
vivo
vivo is a technology company that creates great products based on a design-driven value, with smart devices and intelligent services as its core. The company aims to build a bridge between humans and the digital world. Through unique creativity, vivo provides users with an increasingly convenient mo
Huawei is a leading global provider of information and communications technology (ICT) infrastructure and smart devices. With integrated solutions across four key domains – telecom networks, IT, smart devices, and cloud services – we are committed to bringing digital to every person, home and organi
Cox Communications is committed to creating more moments of real human connection. We bring people closer to family and friends through technology that’s inspired by a culture that puts people first, and we’re always working to improve life in the communities we serve. Our world-class broadband appl
yes
תכירו את השחקנים הראשיים שלנו: העובדות והעובדים. אנחנו לא עובדים עם תסריט קבוע, חושבים מחוץ לקופסא, ומייצרים ז'אנר משלנו. כש-יס קמה, בשנת 1998, הבאנו את בשורת הלווין אל עולם שידורי הטלוויזיה והיינו הראשונים להציע שידורים דיגיטליים ושירותי טלוויזיה אינטראקטיביים - כשבחירת התכנים היא בידיים של הלקוח
.png)
Telekom Malaysia CyberSecurity News
December 23, 2025 08:00 AM
Malaysia’s strong digital infrastructure attracts investments, says Fahmi
KUALA LUMPUR: Malaysia's strong digital infrastructure as well as political and policy stability are driving technology and digital...
December 18, 2025 08:00 AM
TM One Named Best Digital Transformation Enabler By Industry
While many organisations talk about digital transformation, one division within Telekom Malaysia Berhad (TM) is embedding it into the...
December 08, 2025 08:00 AM
APAC operators eye AI, fintech and cybersecurity for growth
TM Forum survey identifies growth drivers for Asia Pacific telcosCybersecurity and AI-related opportunities seen as key in the B2B...
December 01, 2025 08:00 AM
Malaysian telcos embrace digital ID scheme to combat fraud
Malaysia's mobile operators have collaborated with MyDigital ID to integrate the state-run platform's identity verification systems across...
November 06, 2025 08:00 AM
TM One, SIRIM Academy Partner To Strengthen Malaysia’s AI And Cybersecurity Governance
Under the agreement, TM One will provide operational security services such as monitoring, incident response, and managed detection, while SIRIM...
November 05, 2025 06:38 PM
Malaysia’s TM Tech awarded ASEAN Partner of the Year at Cisco Partner Summit
India's dealMYtime Services Pvt. Ltd won the Innovation Partner of the Year award for its innovation in using AI to deal with student mental health issues...
November 05, 2025 08:00 AM
TM, Sirim join forces to support AI governance, digital compliance
KUALA LUMPUR: Telekom Malaysia Bhd's enterprise and government sector solutions arm TM One has collaborated with Sirim Academy, a subsidiary...
October 16, 2025 07:00 AM
Digitalisation gains ground, but SME challenges remain
By placing digitalisation and AI at the core of its economic strategy, govt aims to drive an innovation-led, high-value economy.
October 14, 2025 07:00 AM
$500 bn B2B Opportunity for Telecom Operators: GSMA Highlights Enterprise Digital Transformation Market Growth
GSMA Intelligence estimates a $500 billion opportunity for telecom operators from the enterprise digital transformation market.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Telekom Malaysia CyberSecurity History Information
Official Website of Telekom Malaysia
The official website of Telekom Malaysia is https://www.tm.com.my.
Telekom Malaysia’s AI-Generated Cybersecurity Score
According to Rankiteo, Telekom Malaysia’s AI-generated cybersecurity score is 740, reflecting their Moderate security posture.
How many security badges does Telekom Malaysia’ have ?
According to Rankiteo, Telekom Malaysia currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Telekom Malaysia been affected by any supply chain cyber incidents ?
According to Rankiteo, Telekom Malaysia has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Telekom Malaysia have SOC 2 Type 1 certification ?
According to Rankiteo, Telekom Malaysia is not certified under SOC 2 Type 1.
Does Telekom Malaysia have SOC 2 Type 2 certification ?
According to Rankiteo, Telekom Malaysia does not hold a SOC 2 Type 2 certification.
Does Telekom Malaysia comply with GDPR ?
According to Rankiteo, Telekom Malaysia is not listed as GDPR compliant.
Does Telekom Malaysia have PCI DSS certification ?
According to Rankiteo, Telekom Malaysia does not currently maintain PCI DSS compliance.
Does Telekom Malaysia comply with HIPAA ?
According to Rankiteo, Telekom Malaysia is not compliant with HIPAA regulations.
Does Telekom Malaysia have ISO 27001 certification ?
According to Rankiteo,Telekom Malaysia is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Telekom Malaysia
Telekom Malaysia operates primarily in the Telecommunications industry.
Number of Employees at Telekom Malaysia
Telekom Malaysia employs approximately 10,536 people worldwide.
Subsidiaries Owned by Telekom Malaysia
Telekom Malaysia presently has no subsidiaries across any sectors.
Telekom Malaysia’s LinkedIn Followers
Telekom Malaysia’s official LinkedIn profile has approximately 256,718 followers.
NAICS Classification of Telekom Malaysia
Telekom Malaysia is classified under the NAICS code 517, which corresponds to Telecommunications.
Telekom Malaysia’s Presence on Crunchbase
No, Telekom Malaysia does not have a profile on Crunchbase.
Telekom Malaysia’s Presence on LinkedIn
Yes, Telekom Malaysia maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/telekom-malaysia.
Cybersecurity Incidents Involving Telekom Malaysia
As of January 21, 2026, Rankiteo reports that Telekom Malaysia has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Telekom Malaysia has an estimated 9,783 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Telekom Malaysia ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
Incident Details
Can you provide details on each incident ?
Title: Unifi Mobile Data Breach
Description: Telekom Malaysia Bhd (TM) reported a data breach affecting 250,248 Unifi Mobile customers, including individuals and SMEs. The compromised data included customer names, phone numbers, and emails.
Date Detected: 2023-12-28
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach TEL2151311222
Data Compromised: Customer names, Phone numbers, Emails
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Pii and .
Which entities were affected by each incident ?
Incident : Data Breach TEL2151311222
Entity Name: Telekom Malaysia Bhd (TM)
Entity Type: Telecommunications Company
Industry: Telecommunications
Location: Malaysia
Customers Affected: 250248
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach TEL2151311222
Type of Data Compromised: Pii
Number of Records Exposed: 250248
Sensitivity of Data: Medium
Personally Identifiable Information: customer namesphone numbersemails
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-12-28.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were customer names, phone numbers, emails and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were emails, phone numbers and customer names.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 498.0.
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=telekom-malaysia' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
