A week ago, Singaporean healthcare organization (HCO) SingHealth is warning the patients that there is no need to fall for follow-on vishing and smishing attempts after the country suffered its most dangerous breach.
On Friday, the Ministry of Health explained in a statement that 1.5 million patients have visited on the outpatient clinics and polyclinics between in three years, May 2015 and July 2018 had non-medical information stolen.
They have mentioned some names of stolen data that are included NRIC numbers, addresses, gender, race, and dates of birth. Even the Prime Minister Lee Hsien Loong is said to have been affected with this. The information on distributed medicines for around 160,000 of these patients was also exfiltrated.
The government explained that the CSA [Cyber Security Agency of Singapore] has ascertained that the cyber hackers entered the SingHealth IT computer system using an initial breach on a specific front-end workstation.
They subsequently managed to get the free account details to gain privileged access to the database.
For this, the report of the forensic research has declared that this was an intentional, targeted and it was a well-planned cyber attack. This planned was not made through casual attackers or criminal gangs.
SingHealth is in the process of contacting those affected by text but has been forced to warn patients or try to hijack the process by scammers.
As per the updated information on Facebook what an official SMS from the HCO looks like, to help specifics avoid being duped by phishing texts.
And a separate phone scam alert declared that the SingHealth will not able to contact patients from a phone unless they have been specifically asked to, and will not ask for private and financial data.
Sanjay Aurora, Darktrace APAC managing director, argued that the authorities had done the excellent performance to detect. They have provided a well investigate and report within a month, following the July 4 discovery of suspicious activity.
He also said that like other kinds of private information, medical data could be easily monetized through the criminal forums. But before making a quick buck, a more unfortunate reason to attack would be to cause widespread disorder and systemic damage to the healthcare service — as a fundamental part of the critical foundation — or to undermine trust in a nation’s competency to keep private information safe.
As per the reports, networks in the healthcare sector are now ‘digital jungles and well-resourced attackers take the time and effort to make low and slow attacks to discover vulnerabilities.
Apart from this, silently utilizing them over long periods of time. When their work is well done, they are expecting in covering their tracks, making attribution very tough.