Individual arrested for utilizing illicitly obtained KrisFlyer air miles from unauthorized accounts.
In Singapore, a 28-year-old man was charged in court on May 29 for allegedly purchasing KrisFlyer accounts illegally, using the accumulated air miles to make purchases totaling more than $1,600. Rizaldy Primanta Putra faces four charges under the Computer Misuse Act, two for unauthorized access to computer material and two for unauthorized modification of such material.
According to a police statement, Putra, an Indonesian national, allegedly accessed the KrisFlyer accounts, subsequently using the miles to buy a Samsung phone and phone cover from a retail shop at Changi Airport, as well as pastries from a store in Bugis.
After Singapore Airlines lodged a police report on October 11, 2024, police officers established Putra's identity, but he had already left the country in September 2024. He returned to Singapore on January 11, 2025, and was detained by Airport Police Division officers at Changi Airport.
In court on May 29, Putra indicated his intention to claim trial to the charges. However, there was no lawyer present to represent him. The judge adjourned the case and granted Putra permission to make two local phone calls to contact his lawyer and arrange for bail. He will be released from remand if he is able to find a Singaporean bailor to furnish the $15,000 bail offered by the court.
If found guilty, Putra could face a maximum sentence of two years in prison, a fine of up to $5,000, or both, for each charge of illegally accessing computer material. Each charge of illegally modifying computer material carries a potential sentence of up to three years in prison, a fine of up to $10,000, or both.
The police reminded the public to protect their online accounts by enabling multi-factor authentication or two-factor authentication. If they notice any suspicious or unauthorized transactions, they are advised to report the incident to their service provider or bank immediately.
[1] In a recent case, a man who bought KrisFlyer accounts illegally faced potential penalties of up to $5,000 in fines and/or up to two years in jail for the first offense, but these penalties are not specifically attributed to the Computer Misuse Act, but rather to general legal provisions against fraud or misuse of personal data. (Source: Enrichment Data)
The cybersecurity incident involving the allegedly illegal purchase of KrisFlyer accounts in Singapore raises concerns about the protection of personal data, as this case falls under the purview of the Computer Misuse Act. Furthermore, this incident serves as a reminder for the general public to prioritize technology safety measures, such as enabling multi-factor authentication, to protect their online accounts from criminal activities in the realm of crime-and-justice and general-news.
