Hackers broke into SingHealth's IT systems to steal the data of 1.5 million patients and records of the outpatient medication given to Prime Minister Lee Hsien Loong.
The attackers specifically and repeatedly targeted Mr. Lee's personal particulars and information on his outpatient dispensed medicines.
The hackers first broke into SingHealth's IT system via a front-end workstation, and later managed to obtain log-in details to assess the database
Data compromised included name, NRIC number, address, gender, race, and date of birth of 1.5 million patients.
TPRM report: https://scoringcyber.rankiteo.com/company/singhealth
"id": "sin02111122",
"linkid": "singhealth",
"type": "Data Leak",
"date": "07/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 1500000,
'industry': 'Healthcare',
'location': 'Singapore',
'name': 'SingHealth',
'type': 'Healthcare'}],
'attack_vector': 'Front-end workstation compromise',
'data_breach': {'number_of_records_exposed': 1500000,
'personally_identifiable_information': ['Name',
'NRIC number',
'Address',
'Gender',
'Race',
'Date of birth'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal information',
'Medical records']},
'description': "Hackers broke into SingHealth's IT systems to steal the data "
'of 1.5 million patients and records of the outpatient '
'medication given to Prime Minister Lee Hsien Loong.',
'impact': {'data_compromised': ['Name',
'NRIC number',
'Address',
'Gender',
'Race',
'Date of birth']},
'initial_access_broker': {'entry_point': 'Front-end workstation',
'high_value_targets': 'Prime Minister Lee Hsien '
'Loong'},
'motivation': 'Targeted high-profile individual',
'title': 'SingHealth Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Compromised login credentials'}