The Infocomm Development Authority of Singapore has filed a police report after it was notified that 1,560 SingPass user IDs and passwords may have been accessed without permission.
SINGAPORE: Over 1,500 SingPass users may have had their IDs and passwords accessed without their permission. The Infocomm Development Authority of Singapore (IDA) was notified on Monday (June 2) by the SingPass operator that a number of users had received a SingPass password reset notification letter, even though they did not request for a password change.
IDA's preliminary investigations show that 1,560 users' IDs and passwords were potentially accessed, of which 419 passwords were reset. Password reset notification letters were sent to the registered address of SingPass account holders.
The IDA has filed a police report on Tuesday, but the authority's checks so far show there is no evidence to suggest the SingPass system has been compromised. Passwords of all affected users have been reset, and the IDA is in the process of notifying them.
Said Ms Jacqueline Poh, the Managing Director for the Infocomm Development Authority of Singapore: "For every individual, the incident underlines the importance of taking personal responsibility for cyber security."
"The Government strongly urges all SingPass users to take the necessary precautions to enhance their cyber security. They should ensure that they use strong passwords to access not only SingPass but all the other e-services they subscribe to. Strong passwords contain a combination of numerical figures, capital letters, and are at least eight characters long. Users should also install anti-virus software and update all their software regularly."
The SingPass is a single-factor authentification system for all government e-services. It has 3.3 million users, and covers more than 340 e-services for 64 government agencies. These include services for the Central Provident Fund (CPF) Board, the Inland Revenue Authority of Singapore (IRAS) and the eCitizen online portal. For Singapore citizens and Permanent Residents, the SingPass ID is commonly their identity card (NRIC) numbers. Employment Pass Holders are eligible for the SingPass as well. There were 57 million SingPass transactions in 2013.
- CNA/ly
SINGAPORE: Over 1,500 SingPass users may have had their IDs and passwords accessed without their permission. The Infocomm Development Authority of Singapore (IDA) was notified on Monday (June 2) by the SingPass operator that a number of users had received a SingPass password reset notification letter, even though they did not request for a password change.
IDA's preliminary investigations show that 1,560 users' IDs and passwords were potentially accessed, of which 419 passwords were reset. Password reset notification letters were sent to the registered address of SingPass account holders.
The IDA has filed a police report on Tuesday, but the authority's checks so far show there is no evidence to suggest the SingPass system has been compromised. Passwords of all affected users have been reset, and the IDA is in the process of notifying them.
Said Ms Jacqueline Poh, the Managing Director for the Infocomm Development Authority of Singapore: "For every individual, the incident underlines the importance of taking personal responsibility for cyber security."
"The Government strongly urges all SingPass users to take the necessary precautions to enhance their cyber security. They should ensure that they use strong passwords to access not only SingPass but all the other e-services they subscribe to. Strong passwords contain a combination of numerical figures, capital letters, and are at least eight characters long. Users should also install anti-virus software and update all their software regularly."
The SingPass is a single-factor authentification system for all government e-services. It has 3.3 million users, and covers more than 340 e-services for 64 government agencies. These include services for the Central Provident Fund (CPF) Board, the Inland Revenue Authority of Singapore (IRAS) and the eCitizen online portal. For Singapore citizens and Permanent Residents, the SingPass ID is commonly their identity card (NRIC) numbers. Employment Pass Holders are eligible for the SingPass as well. There were 57 million SingPass transactions in 2013.
- CNA/ly