Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

Singapore Says Hackers Stole 1.5 Million Health Records in Massive Cyberattack

Hackers have stolen the health records of 1.5 million Singaporeans including Prime Minister Lee Hsien Loong, authorities said Friday, with the leader specifically targeted in the city-state’s biggest ever data breach.

Hackers have stolen the health records of 1.5 million Singaporeans including Prime Minister Lee Hsien Loong, authorities said Friday, with the leader specifically targeted in the city-state’s biggest ever data breach.

Singapore’s health and information ministries said a government database was broken into in a “deliberate, targeted and well-planned” strike, describing the attack as “unprecedented”.

“Attackers specifically and repeatedly targeted the personal particulars and outpatient information of Prime Minister Lee Hsien Loong,” health minister Gan Kim Yong told a press conference.

Forensic analysis by Singapore’s Cyber Security Agency “indicates this is a deliberate, targeted, and well-planned cyber-attack and not the work of casual hackers or criminal gangs,” he added.

Officials declined to comment on the identity of the hackers, citing “operational security”, but said the prime minister’s data has not shown up anywhere on the internet.

“I don’t know what the attackers were hoping to find. Perhaps they were hunting for some dark state secret, or at least something to embarrass me,” Lee wrote on Facebook.

“My medication data is not something I would ordinarily tell people about, but there is nothing alarming in it.”

Hackers used a computer infected with malware to gain access to the database between June 27 and July 4 before administrators spotted “unusual activity”, authorities said.

Advertisement. Scroll to continue reading.

The compromised data includes personal information and medication dispensed to patients, but medical records and clinical notes have not been affected, the health and communications ministries said.

“Health records contain information that is valuable to governments,” said Eric Hoh, Asia-Pacific president of cyber-security firm FireEye.

“Nation-states increasingly collect intelligence through cyber-espionage operations which exploit the very technology we rely upon in our daily lives.”

Earlier this month, the US National Intelligence Director Dan Coats described Russia, China, Iran and North Korea as the “worst offenders” when it came to attacks on American “digital infrastructure”.

Wealthy Singapore is hyper-connected and on a drive to digitise government records and essential services, including medical records which public hospitals and clinics can share via a centralised database.

But authorities have put the brakes on these plans while they investigate the cyber-attack. A former judge will head a committee looking into the incident.

While the city-state has some of the most advanced military weaponry in the region, the government says it fends off thousands of cyberattacks every day and has long warned of breaches by actors as varied as high-school students in their basements to nation-states.

In his Facebook post about the attack, Loong warned that “those trying to break into our data systems are extremely skilled and determined. They have huge resources, and never give up trying.”

In 2017, hackers broke into a defence ministry database, stealing the information of some 850 Singapore army conscripts and ministry staff.

Related: Hackers Breached Non-Classified System at Singapore’s Ministry of Defence

RelatedTrump-Kim Summit Attracts Wave of Cyber-Attacks on Singapore

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Incident Response

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Incident Response

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of...

Cloud Security

VMware described the bug as an out-of-bounds write issue in its implementation of the DCE/RPC protocol. CVSS severity score of 9.8/10.