-
IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here. The OTHER forum is HERE so please stop asking.
Serious 1.5 Million Patients Personal Data Stolen! PM Lee Included! Whose Fault? Oppies Or North Korea?
- Thread starter JohnTan
- Start date
You accusing others what you just did. After get caught a coward dare not call Johor crown prince names that you called me, just shift focus to call me more names based on hot air.Song Bo? Ownself cock up now shift focus and emphasis on attacker cuntry instead of ownself incompetence. Lol
Must be filthy Indians that did it. They hacked into my google account last year.
Then? Can the patients take legal actions?
I have just proven you did that yourself to shift focus after get caught your words of me have zero credibility in my Johor crown prince thread. Whatever you said of me are what you dare not say to Johor crown prince saying exactly the same things as me. So your words of me shifting focus are like all other names that you called me: ccb lies with zero credibility.When PAP knows that it's at fault and can't blame themselves, the easiest way to shift focus like @ginfreely, blame others. Lol
Hackers now knows secrets of Why Exactly See Fart Loong PengSan Fainted @NDP TalkCock Rally!
https://www.channelnewsasia.com/new...kely-nation-state-medical-data-price-10549372
SingHealth cyberattack likely by nation state, medical data ‘can fetch a high price’: Experts
The medical data of a high-ranking government official can also be used to “coerce” the person to provide access to otherwise out-of-reach resources, says Mr Eric Hoh, Asia Pacific president at FireEye.
A patient trying out the self-help health kiosk at SingHealth Bedok Polyclinic. (Photo: Eastern Health Alliance, which has merged with SingHealth)
By Kevin Kwang @KevinKwangCNA
20 Jul 2018 09:35PM (Updated: 20 Jul 2018 11:49PM)
Share this content
Bookmark
SINGAPORE: A “well resourced, well-funded and highly sophisticated” nation-state actor is likely behind the unprecedented cyberattack on SingHealth’s database, which targeted Prime Minister Lee Hsien Loong’s personal and medical records, and made away with 1.5 million patients' details, according to one cybersecurity expert.
On Friday, the Ministry of Communications and Information and Ministry of Health announced that 1.5 million SingHealth patients’ demographic data were stolen, while 160,000 of them had their outpatient dispensed medicine records taken too.
Mr Lee was “specifically and repeatedly” targeted during the attack that took place last month, and hackers managed to steal his personal particulars and medication information.
Emeritus Senior Minister Goh Chok Tong also revealed in a Facebook post that his "non-medical personal particulars" with SingHealth had been stolen.
Investigations by the Cyber Security Agency of Singapore (CSA) and the Integrated Health Information System (IHIS) subsequently found the breach to be a “deliberate, targeted and well-planned cyberattack” and not the work of casual hackers or criminal gangs.
Mr Eric Hoh, Asia Pacific president of cybersecurity firm FireEye, said the cyberattack was “very different” from those by typical cybercriminals who generally sell the stolen data or use it for ransomware.
This has yet to happen in SingHealth's case since the breach was detected and thwarted on Jul 4.
Stealing the medical records of a high-ranking official, for example, would give hackers the opportunity to use the data to “coerce” that person into revealing secrets or giving access to otherwise unattainable resources, Mr Hoh said.
Acronis’ lead security researcher Ravikant Tiwari agreed, saying that stolen medical records are most commonly used for aiding in spying if the target is a high-ranking official.
Mr Lee said on Friday that he did not know what the people behind the cyberattack were hoping to find from his medication data, but that if they were looking to embarrass him, "they would have been disappointed".
"Perhaps they were hunting for some dark state secret, or at least something to embarrass me. If so, they would have been disappointed," Mr Lee said in a Facebook post.
"My medication data is not something I would ordinarily tell people about, but there is nothing alarming in it," Mr Lee added.
THE HAND OF A NATION-STATE ACTOR
Asked why he thought the SingHealth cyberattack could be the work of a nation-state actor, Mr Hoh said: “This was an advanced persistent threat (APT) and the nature of such attacks are that they are conducted by nation states using very advanced tools.
“They tend to be well resourced, well-funded and highly sophisticated,” he explained.
Additionally, the perpetrator carried on trying to access SingHealth’s network even after detection, which is the “typical signature” of a nation-state actor, the FireEye executive pointed out.
Channel NewsAsia understands that the authorities have established who might be behind such an attack. There are only a few countries in the world who have the level of sophistication shown during the cyberattack campaign.
CSA could not reveal more details due to operational security reasons, said its chief executive David Koh during Friday’s press conference.
MEDICAL DATA IS LUCRATIVE BUSINESS
Another cybersecurity expert, Mr Leonard Kleinman, pointed out that medical data contains a trove of information – from personally identifiable data to financial details – “that can be used to create a highly sought-after composite of an individual”.
Such pilfered data can fetch a high price on the dark Web, with each entry potentially selling for US$50 to US$100 more than stolen credit card data, said Mr Kleinman, who is the chief Cyber Security Advisor at RSA Asia Pacific and Japan.
“As it could contain any amount and level of information, healthcare institutions are among the most sought-after industries by criminals who can be motivated by a multitude of possible reasons,” he said.
The executive also cautioned that the fallout of such a hack may not be immediately felt either, as it could “take months” for the data to be first sold, then used.
“Given the nature of this attack, it is hard to say exactly what the end game is, especially when the attackers haven’t identified themselves,” Mr Kleinman added.
Darktrace Asia Pacific managing director Sanjay Aurora told Channel NewsAsia in an email that it can only speculate on the hacker's motives, but medical information, like other kinds of personal data, can be easily monetised.
That said, beyond making a quick buck, Mr Aurora said a more "sinister reason" could be to cause widespread disruption and systemic damage to the healthcare service or to undermine trust in a nation's competency to keep personal data safe.
WHAT CAN AFFECTED SINGAPOREANS DO?
As for next steps, FireEye’s Hoh suggested that the 1.5 million affected SingHealth users be on “heightened alert” and be extra vigilant over things such as phone calls from unknown numbers or emails that purport to be from legitimate organisations.
He also said that these users should change their online passwords linked to the compromised IT systems.
Sophos senior technologist Paul Ducklin, meanwhile, recommends those affected to keep a careful watch over their financial statements and report any suspicious activity immediately.
“Be especially suspicious of unsolicited communications that arrive in the wake of this breach offering any sort of help or asking for further details to assist in the investigation,” Mr Ducklin warned.
“Social engineers and scammers are experts at preying on people's fears (and their willingness to help) after security incidents of this sort.”
He added: “Whether this was a lone hacker who got lucky, a well-oiled cybercrime gang or a state-sponsored attack team won't get your personal data back, and it won't change the fact that you can't control who gets it next.
“Keep your own eyes open for any attempt to abuse your personal data in the future."
Mr Hoh also hopes that Singaporeans will see this incident as a timely reminder that cyberattacks, big or small, will happen and that the key is for all parties - government, businesses and citizens - to respond quickly to such breaches.
"Somebody can launch a cyberattack against you, but if they didn't get away with anything, then you'd have successfully defended yourself."
This, he reckoned, is the mindset people should adopt going forward.
Source: CNA/kk
https://www.channelnewsasia.com/new...kely-nation-state-medical-data-price-10549372
SingHealth cyberattack likely by nation state, medical data ‘can fetch a high price’: Experts
The medical data of a high-ranking government official can also be used to “coerce” the person to provide access to otherwise out-of-reach resources, says Mr Eric Hoh, Asia Pacific president at FireEye.
A patient trying out the self-help health kiosk at SingHealth Bedok Polyclinic. (Photo: Eastern Health Alliance, which has merged with SingHealth)
By Kevin Kwang @KevinKwangCNA
20 Jul 2018 09:35PM (Updated: 20 Jul 2018 11:49PM)
Share this content
Bookmark
SINGAPORE: A “well resourced, well-funded and highly sophisticated” nation-state actor is likely behind the unprecedented cyberattack on SingHealth’s database, which targeted Prime Minister Lee Hsien Loong’s personal and medical records, and made away with 1.5 million patients' details, according to one cybersecurity expert.
On Friday, the Ministry of Communications and Information and Ministry of Health announced that 1.5 million SingHealth patients’ demographic data were stolen, while 160,000 of them had their outpatient dispensed medicine records taken too.
Mr Lee was “specifically and repeatedly” targeted during the attack that took place last month, and hackers managed to steal his personal particulars and medication information.
Emeritus Senior Minister Goh Chok Tong also revealed in a Facebook post that his "non-medical personal particulars" with SingHealth had been stolen.
Investigations by the Cyber Security Agency of Singapore (CSA) and the Integrated Health Information System (IHIS) subsequently found the breach to be a “deliberate, targeted and well-planned cyberattack” and not the work of casual hackers or criminal gangs.
Mr Eric Hoh, Asia Pacific president of cybersecurity firm FireEye, said the cyberattack was “very different” from those by typical cybercriminals who generally sell the stolen data or use it for ransomware.
This has yet to happen in SingHealth's case since the breach was detected and thwarted on Jul 4.
Stealing the medical records of a high-ranking official, for example, would give hackers the opportunity to use the data to “coerce” that person into revealing secrets or giving access to otherwise unattainable resources, Mr Hoh said.
Acronis’ lead security researcher Ravikant Tiwari agreed, saying that stolen medical records are most commonly used for aiding in spying if the target is a high-ranking official.
Mr Lee said on Friday that he did not know what the people behind the cyberattack were hoping to find from his medication data, but that if they were looking to embarrass him, "they would have been disappointed".
"Perhaps they were hunting for some dark state secret, or at least something to embarrass me. If so, they would have been disappointed," Mr Lee said in a Facebook post.
"My medication data is not something I would ordinarily tell people about, but there is nothing alarming in it," Mr Lee added.
THE HAND OF A NATION-STATE ACTOR
Asked why he thought the SingHealth cyberattack could be the work of a nation-state actor, Mr Hoh said: “This was an advanced persistent threat (APT) and the nature of such attacks are that they are conducted by nation states using very advanced tools.
“They tend to be well resourced, well-funded and highly sophisticated,” he explained.
Additionally, the perpetrator carried on trying to access SingHealth’s network even after detection, which is the “typical signature” of a nation-state actor, the FireEye executive pointed out.
Channel NewsAsia understands that the authorities have established who might be behind such an attack. There are only a few countries in the world who have the level of sophistication shown during the cyberattack campaign.
CSA could not reveal more details due to operational security reasons, said its chief executive David Koh during Friday’s press conference.
MEDICAL DATA IS LUCRATIVE BUSINESS
Another cybersecurity expert, Mr Leonard Kleinman, pointed out that medical data contains a trove of information – from personally identifiable data to financial details – “that can be used to create a highly sought-after composite of an individual”.
Such pilfered data can fetch a high price on the dark Web, with each entry potentially selling for US$50 to US$100 more than stolen credit card data, said Mr Kleinman, who is the chief Cyber Security Advisor at RSA Asia Pacific and Japan.
“As it could contain any amount and level of information, healthcare institutions are among the most sought-after industries by criminals who can be motivated by a multitude of possible reasons,” he said.
The executive also cautioned that the fallout of such a hack may not be immediately felt either, as it could “take months” for the data to be first sold, then used.
“Given the nature of this attack, it is hard to say exactly what the end game is, especially when the attackers haven’t identified themselves,” Mr Kleinman added.
Darktrace Asia Pacific managing director Sanjay Aurora told Channel NewsAsia in an email that it can only speculate on the hacker's motives, but medical information, like other kinds of personal data, can be easily monetised.
That said, beyond making a quick buck, Mr Aurora said a more "sinister reason" could be to cause widespread disruption and systemic damage to the healthcare service or to undermine trust in a nation's competency to keep personal data safe.
WHAT CAN AFFECTED SINGAPOREANS DO?
As for next steps, FireEye’s Hoh suggested that the 1.5 million affected SingHealth users be on “heightened alert” and be extra vigilant over things such as phone calls from unknown numbers or emails that purport to be from legitimate organisations.
He also said that these users should change their online passwords linked to the compromised IT systems.
Sophos senior technologist Paul Ducklin, meanwhile, recommends those affected to keep a careful watch over their financial statements and report any suspicious activity immediately.
“Be especially suspicious of unsolicited communications that arrive in the wake of this breach offering any sort of help or asking for further details to assist in the investigation,” Mr Ducklin warned.
“Social engineers and scammers are experts at preying on people's fears (and their willingness to help) after security incidents of this sort.”
He added: “Whether this was a lone hacker who got lucky, a well-oiled cybercrime gang or a state-sponsored attack team won't get your personal data back, and it won't change the fact that you can't control who gets it next.
“Keep your own eyes open for any attempt to abuse your personal data in the future."
Mr Hoh also hopes that Singaporeans will see this incident as a timely reminder that cyberattacks, big or small, will happen and that the key is for all parties - government, businesses and citizens - to respond quickly to such breaches.
"Somebody can launch a cyberattack against you, but if they didn't get away with anything, then you'd have successfully defended yourself."
This, he reckoned, is the mindset people should adopt going forward.
Source: CNA/kk
the packets were finally traced?
Bui Kim did, he wasn't sure he was shaking hands with real men when was here, one, was it a male or female?, the other, does he have one ball, two balls or half a balls & the other unknown man, does he have any balls, he was thinking. So he now steal medical records to check.
Would be interesting to be able to know if that mee siam mai hum " is he or is he not"? Is he one of us?
The following ministers should be executed immediately - Defence minister and Health minister.
Where was the highly touted MINDEF cyber defence team? The health minister was too busy vacationing to bother about data security.
You be surprise, u find he's a faggot in his med record.
Nobody told them to come clean...& bloody oppositions should catch them at their own game, by asking the proper questions like these in parliament, do a throrough research on this & blast them...Will the MOH be fined as in data breach? If this was any other, than....ka ki leng....hell will break loose.
Nobody committed harakiri? any disgrafool....yelling for : say sorry, apologies?? These are the things in which the oppositions, must size the day!!
He is one by genetic?....then a GMO man??
No one needs Singhealth health record to know he is a bisexual gay who has a sex fetish for Indians. All you need is a keen observation of him. Now He behaves like football coach when thrashed five-nil start blaming the opponents for having too good, too evil strikers. He should self reflect & look hard at his own favourite pet defenders, IT Indians tasked to protect the system. Its very likely to be a kelong insider job done by IT Indians selling out to singapore's adversary malaysia and indonesia. IT Indian Snakes have been doing it everywhere in the world, even in their own country database. If you trust a snake, you deserve to be bitten.
https://www.bbc.com/news/world-asia-india-42575443
Aadhaar: 'Leak' in world's biggest database worries Indians
- 5 January 2018
Indian officials in charge of a controversial biometric identity scheme have filed a police complaint after a report that citizens' personal details were being sold for as little as 500 rupees ($7.8;£5.8) online.
The Unique Identification Authority of India (UIDAI) wants a probe into "unauthorised access" to its database.
But it said biometric data was safe.
The Tribune newspaper claimed that it bought user details via an "agent" advertising his services on WhatsApp.
The report is the latest revelation against the UIDAI biometric system known as Aadhaar, which means foundation.
It said that once it paid the "agent", its reporters were given a username and password that allowed them to enter any Aadhaar number into the UIDAI website and get access to user information including name, address, photo, phone number and email address.
This is one nasty fucking screwup
As usual no one will get fired or held accountable. Fucking 1.5million accounts info were breached. No one gets fisted?!
As usual no one will get fired or held accountable. Fucking 1.5million accounts info were breached. No one gets fisted?!
SingHealth is a poor victim of this nasty and malicious attack, you want to continue to fist the poor victim?
I think Fatty Kim did it, he was shown so much opulence and wealth when he was here.
PM Lee HL is too tempting a target. A despot like fatty himself, wifey (HC) in charge of one of biggest sovereign wealth fund worth SGD300B upwards.
A fantastic victim for extortion with medical information as hostage.
SG National reserves are in excess of SGD 1 trillion.
Ransom can easily be SGD1billion upwards.
What do u think?
Lhl came straight out to say he would not be embarrassed by his medical records. And there is nothing unusual in his medical profile.
This again reveals that he is a selfish and gutless person, he does not have the gravitas to lead, much less be PM.
When all the issues concerning the country cropped up - Little India riot; Terrex detention; disease outbreak causing deaths in SGH; training deaths in SAF; MRT breakdowns and so many many others - this spineless person was nowhere to be heard or seen. But when something concerns him directly, recent case being Oxleygate, he will suddenly be in the media saying this shit that shit and the other shit.
Really lousy quality kind of person. The attitude is so very revealing: other people die never mind, as long as I don't die. But if I'm in danger of dying, then I will pull everyone else to protect me.
For all we know right now in some cabinet or committee meeting this so-called PM is throwing tantrums at the underlings for being paid obscene salaries and being incompetent.
Similar threads
