SingHealth Details

SingHealth

Singapore, Singapore • employees • Healthcare

Industry

Healthcare

Security Incidents

Singapore Health Services, commonly known as SingHealth, is the largest group of healthcare institutions in Singapore. Established in 2000, the group consists of four public hospitals, three community hospitals, five national specialty centres and a network of eight polyclinics.

Security Incidents

SingHealth Breach of Jul 2018

Severity Score

Significant

Type

Data Breach

Summary

In July 2018, SingHealth, Singapore's largest group of healthcare institutions, experienced a significant data breach that compromised the personal information of 1.5 million patients. The breach, attributed to sophisticated state-sponsored threat actors, resulted in the exfiltration of non-medical personal data, including names, addresses, and national identification numbers, as well as outpatient medical data of 160,000 individuals, including that of Prime Minister Lee Hsien Loong. The attackers gained access through a front-end workstation, exploiting vulnerabilities in the system to escala...
Show more

Severity

The SingHealth cyber security incident of July 2018 was severe as it involved a cyberattack by unidentified state actors targeting SingHealth's IT system. Data exfiltration occurred between June 27 and July 4, 2018, compromising personal particulars of 1.5 million SingHealth patients and records of outpatient dispensed medicines for 160,000 patients.

Impact

The breach had a significant impact as it resulted in the theft of sensitive information including names, National Registration Identity Card (NRIC) numbers, addresses, and dates of birth of 1.5 million patients. Additionally, outpatient prescription records of 160,000 individuals, including Prime Minister Lee Hsien Loong and several ministers, were also stolen, raising concerns about privacy and security.