Hackers access health records of 1.5M patients in Singapore

Nicholas Leider | | Health Exec | Cybersecurity

Attempts to hack political players isn’t just an American thing. Lee Hsien Loong, Singapore’s prime minister, has been repeatedly targeted by cyber thieves—and they have accessed a database with information of 1.5 million patients who visited clinics run by SingHealth, the country’s public healthcare system.

The breach includes records for patients who visited SingHealth facilities from May 1, 2015, to July 4, 2018. Database administrators noticed unusual activity on July 4, when they halted activity and investigated the abnormalities. Information accessed and copied included patient names, addresses, dates of birth, race and gender.

“The records were not tampered with, i.e. no records were amended or deleted,” according to a SingHealth release. “No other patient records, such as diagnosis, test results or doctors’ notes, were breached. We have not found evidence of a similar breach in the other public healthcare IT systems.”

SingHealth stated it will notify all patients who visited clinics during the time frame of the security breach. Investigators have already identified the initial point of entry for the hackers, who accessed a front-end workstation and obtained privileged account credentials to access the database.

While millions of Singaporeans were affected, the hackers targeted the prime minister—an apparent effort to access confidential medical information.

“Investigations by the Cyber Security Agency of Singapore (CSA) and the Integrated Health Information System confirmed that this was a deliberate, targeted and well-planned cyberattack,” according to the SingHealth statement. “It was not the work of casual hackers or criminal gangs. The attackers specifically and repeatedly targeted Prime Minister Lee Hsien Loong’s personal particulars and information on his outpatient dispensed medicines.”

""
Nicholas Leider, Managing Editor

Nicholas joined TriMed in 2016 as the managing editor of the Chicago office. After receiving his master’s from Roosevelt University, he worked in various writing/editing roles for magazines ranging in topic from billiards to metallurgy. Currently on Chicago’s north side, Nicholas keeps busy by running, reading and talking to his two cats.

Related Content

Healthcare hacker sentenced to 10 years in prison
Ransomware group deploys ticking clock to threaten Georgia hospital
Hackers were inside an Iowa hospital’s network for two weeks
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
CMS contractor takes $1.2M loss after data breach, DOJ lawsuit

Around the web

Cardiovascular Business
Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals. 

AI in Healthcare
A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”

Cardiovascular Business
FDA commissioner urges clinicians to join fight against medical misinformation

FDA Commissioner Robert Califf, MD, said the clinical community needs to combat health misinformation at a grassroots level. He warned that patients are immersed in a "sea of misinformation without a compass."

Design by Adaptive Theme
Trimed Popup
Trimed Popup