Security Experts:

Connect with us

Hi, what are you looking for?



Singapore Imposes $740,000 Fines Over Major Cyber Attack

Singapore’s privacy watchdog Tuesday imposed fines of Sg$1 million ($740,000) on a healthcare provider and an IT agency over a cyber-attack that saw health records of about quarter of the population stolen.

Singapore’s privacy watchdog Tuesday imposed fines of Sg$1 million ($740,000) on a healthcare provider and an IT agency over a cyber-attack that saw health records of about quarter of the population stolen.

In the city-state’s biggest ever data breach, hackers last year gained access to a government database and made off with the records of 1.5 million people, with Prime Minister Lee Hsien Loong among those targeted.

An official inquiry last week highlighted a litany of failings, including weaknesses in computer systems and inadequate staff training and resources, and said authorities believe a state was likely behind the attack.

The official Personal Data Protection Commission announced it was fining Integrated Health Information Systems, which runs the IT systems for Singapore’s public healthcare sector, Sg$750,000.

SingHealth, a healthcare provider which groups some public hospitals and clinics, was hit with a Sg$250,000 fine.

The commission said the organizations had failed to “make reasonable security arrangements to protect personal data of individuals”.

The stolen information was “highly sensitive and confidential personal data,” it said. 

“It is not difficult to imagine the potential embarrassment that a patient may suffer if such sensitive information about the patient and the patient’s health concerns were made known to all and sundry.”

Officials have not disclosed which state they believe was behind the breach, which occurred between June 27 and July 4. The compromised data included personal information and medication dispensed to patients.

Analysts say that Russia — which is accused of meddling in the US presidential election — China, Iran and North Korea are believed to have the capability to carry out such attacks.

Wealthy Singapore is hyper-connected and on a drive to digitize government records and essential services. But the government says it fends off thousands of cyber-attacks every day and has long warned of breaches by actors as varied as high-school students in their basements to nation states.

Learn More at SecurityWeek’s Singapore ICS Cyber Security Conference

RelatedMassive Singapore Healthcare Breach Possibly Involved Contractor

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...