Singapore Defense Ministry Under Remote Attack

Uploaded on 2017-04-04 in NEWS-Cybersecurity News, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW

Singapore’s defense ministry (MINDEF) has recently disclosed that a breach in an Internet-connected system earlier in February had resulted in the personal data of 850 national servicemen and employees being stolen. 

According to MINDEF, the I-net system used by personnel to access the Internet through terminals at the ministry and other facilities was breached by an attack in early February. 

While personal data, including identification numbers, phone numbers, and date of birth, were believed to have been stolen during the incident, the ministry said no classified information was compromised because it is stored on a separate system not connected to the Internet.

Singapore is no stranger to such cyber-attacks. As noted before, it has been paying keen attention to the cyber domain as a developed, highly-networked country. Singapore is particularly vulnerable as it relies on its reputation for security and stability to serve as a hub for businesses and attract talent. 

Indeed, last year, Deloitte found that Singapore was among the five Asian countries most vulnerable to cyber-attacks. The past few years have seen breaches in other parts of the city-state’s government as well, including the foreign ministry’s IT system as well as the Prime Minister’s Office website.

In response, Singapore has unveiled a series of initiatives aimed at boosting cyber-security, including creating new institutions, safeguarding critical infrastructure, training cyber security personnel, and collaborating more with the private sector.
Nonetheless, the cyber-attack recently is a reminder that even the more capable states in the Asia-Pacific continue to struggle with confronting threats in the cyber realm. 

This was the first publicly disclosed cyber-attack that MINDEF has experienced, and the ministry has described it as “targeted and carefully planned,” with the purpose of gaining access to official secrets. And based on what Singaporean officials have discovered so far, the attack appears to be less like the work of regular hackers and more along the lines of sophisticated state or state-backed actors.

The Diplomat

INTERPOL Targets Cybercrime in Asia:

China’s Cyber Attacks on Governments and Corporates in Asia:

China’s Cyber War Capabilities Alarm The Neighbours:

 

« Why SMEs Need Cyber Insurance
Britain Bombarded With High Level Cyber Attacks »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

NCX Group

NCX Group

NCX Group is committed to helping customers identify and mitigate the risks inherent in today’s interconnected environments and business processes.

Hogan Lovells

Hogan Lovells

Hogan Lovells is an international business law firm with offices across Europe, Asia and the USA. Practice areas include Privacy & Cybersecurity.

DG Technology

DG Technology

DG Technology is a customer-centric technology expert and business consultant that delivers services and products to minimize your information security, compliance, and business risks.

SecureMetric Technology

SecureMetric Technology

SecureMetric is one of SE Asia’s leading players in the field of digital security with a focus on Software Licensing Protection, 2-Factor Authentication, Advanced Identity and Access Management, Publi

bwtech@UMBC

bwtech@UMBC

The bwtech@UMBC Cyber Incubator is an innovative business incubation program that delivers business and technical support to start-up and early-stage cybersecurity/IT products and services companies.

Salt Communications

Salt Communications

Salt communications is a global leader in secure communications. Our bespoke platform is the secure communications solution that uniquely gives complete control to our customers.

Ingenio Global

Ingenio Global

Ingenio is a specialist recruitment business for SaaS companies. Our purpose is to source exceptional talent in areas including cyber security for leading SaaS companies in the UK and Ireland.

Red Snapper Recruitment

Red Snapper Recruitment

Red Snapper Recruitment is a market leading staffing services provider to the law enforcement, cyber security, offender supervision and regulatory services markets.

Infosec Train

Infosec Train

Infosec Train provide professional training, certifications & professional services related to all spheres of Information Technology and Cyber Security.

MythX

MythX

MythX is the premier security analysis service for Ethereum smart contracts.

C5 Capital

C5 Capital

C5 Capital is a specialist investment firm that exclusively invests in the secure data ecosystem including cybersecurity, cloud infrastructure, data analytics and space.

Knovos

Knovos

Knovos is a leading technology innovator developing solutions for automating, integrating, and innovating Information Governance.

Accurics

Accurics

Accurics enables self-healing cloud native infrastructure by codifying security throughout your development lifecycle.

FourNet

FourNet

FourNet is an award-winning provider of cloud and managed services; we work closely with our clients to enable digital transformation across their organisation.

42Crunch

42Crunch

42Crunch provides API security testing and threat protection. We proactively test, fix and protect your APIs from development to runtime.

Vorlon

Vorlon

Vorlon's agentless patent-pending solution facilitates risk profiling of apps, and provides AI-driven behavioral analytics with response recommendations.