More than 1,500 SingPass accounts accessed 'illegitimately':
IDA
SINGAPORE - More than 1,500 SingPass accounts have been accessed
illegitimately, potentially threatening the security of citizens'
data from how much they earn and where they live to their car
number and children's names.
SingPass is a password that was set up for every citizen in 2003 to
access the 170-plus e-government services. But SingPass often
contains easy-to-guess numbers, such as birth dates, which hackers
can readily find out.
In a hastily-called press conference late Wednesday evening, the
Infocomm Development Authority (IDA) said it was notified on June 2
by its contractor, locally-based CrimsonLogic, that a number of
SingPass users had received a SingPass reset notification letter
although they did not request for any password reset.
Then IDA noticed that there were "a lot more" SingPass accounts
than there were mobile numbers tied to the accounts to perform
functions like password reset. A police report was lodged on June
3.
- See more at:
http://www.straitstimes.com/news/singapore/more-singapore-stories/story/more-1500-singpass-accounts-accessed-illegitimately-ida-#sthash.zOBdxiOT.dpuf
