Singapore’s largest healthcare facility, SingHealth has been hacked and lost a massive data of over 1.5 million patients visiting SingHealth polyclinics and clinics over a given period between May 1, 2015 and July 4, 2018. The Singapore’s Prime Minister Lee Hsien Loong is one of the victim, among other government figures.
The attack occurred between 27 June 2018 and 4 July 2018. The attackers hacked into SingHealth’s computer system and stole sensitive and personal data (names, addresses, national ID registration card numbers…) without affecting medical data. According to government sources, the Prime Minister’s personal data were particularly targeted. According to an investigation by cyber security experts and law enforcement agencies, the attack infected the SingHealth frontal Workstation with malware. In response, SingHealth warned its users about false SMS campaigns and asked them to ensure that no personal information (phone, credit card number) was viewed illegally.
This type of information is sold at attractive prices on DarkWeb (from 300 to 500 dollars each for the most important information). However, this large-scale attack was difficult to detect because hackers compromised the endpoints by malware and according to Absolute‘s Director of Solutions, Josh Mayfield : “when a terminal has access to patient records, it does not cause an alarm when the trusted device accesses the patient’s data, which it does all the time without incident.” The latency time thus allowed the attacker to steal millions of data. The attack also follows a major data breach at Labcorp, one of the largest medical diagnostic services in the United States.