Cyber
09:37, 07-Aug-2018
Singapore: Cyberattack has hallmarks of state-linked group
Updated
09:02, 10-Aug-2018
["china"]
Share
Copied
Singapore’s worst cyberattack in its history may be state-linked, the government’s communications minister said on Monday.
In late June, hackers started stealing personal details and prescription records of patients who visited Singapore’s outpatient clinics over the previous three years, authorities announced on July 20.
Personal information of about 1.5 million people including the Prime Minister was stolen.
Speaking in parliament on Monday, Minister of Communications S. Iswaran said the government would not disclose the attackers’ identity for security reasons but had determined the attack was the work of an "Advanced Persistent Threat" (APT) group which is typically state-linked.
An SMS message sent by SingHealth to clients affected by a cyberattack on a mobile phone in Singapore, July 23, 2018./VCG Photo
An SMS message sent by SingHealth to clients affected by a cyberattack on a mobile phone in Singapore, July 23, 2018./VCG Photo
“This (APT) refers to a class of sophisticated cyber attackers, typically state-linked, who conduct extended, carefully planned cyber campaigns, to steal information or disrupt operations,” said Iswaran.
He said government agencies had a high level of confidence in the identity of the attackers but not enough evidence to take legal action.
Health Minister Gan Kim Yong added that the attackers had made efforts to remove their tracks, making investigations harder, and that they could strike again.
“Despite our security measures, the attackers had been very patient, very persistent and very resourceful,” said Gan.
“With advanced hacking tools, they eventually succeeded... We take this seriously as there’s no reason to believe that they will not try again with even more advanced tools.”
Singapore’s worst cyberattack in its history, in which personal information of about 1.5 million people including the Prime Minister was stolen, has the hallmarks of a state-linked group, said the government. /VCG Photo
Singapore’s worst cyberattack in its history, in which personal information of about 1.5 million people including the Prime Minister was stolen, has the hallmarks of a state-linked group, said the government. /VCG Photo
In the wake of the attack, the government disconnected computers from the Internet at public healthcare centers and set up a four-member panel to investigate the incident which will report by the end of December.
Professional services firm PricewaterhouseCoopers (PWC) and the Cyber Security Agency of Singapore are working with the health ministry to identify vulnerabilities in their systems and plug any holes to try and prevent a repeat, Gan added.
Major cyberattacks are rare in Singapore, which has invested heavily in cyber security over the past decade. The attack comes as the highly wired and digitalized state has made cyber security a priority both at home and for its neighbors in the ASEAN regional bloc.
(Top image: VCG Photo)
Source(s): Reuters