Source: The Business Times

A Committee of Inquiry (COI) that comprises four members was selected to probe into the recent cybersecurity breach against SingHealth’s patients’ records, which was dubbed as the largest data breach in Singapore’s history.

In a press release by the Ministry of Information and Communication (MCI), the COI, which was convened yesterday on 24 Jul, will be spearheaded by former Chief District Judge and current member of the Public Service Commission, Mr Richard Magnus.

Mr Magnus said: “This is a responsibility that I take seriously. I will work with the COI members to ensure that we fully deliver on this important task which has been entrusted on us.”

The remaining members of the COI are Executive Chairman of cybersecurity solutions company Quann World, Mr Lee Fook Sun; group Chief Operating Officer of healthcare technology company Sheares Healthcare Management, Mr T.K. Udairam; and Assistant Secretary-General of the National Trades Union Congress, Ms Cham Hui Fong.

Previously, Minister-in-charge of Cybersecurity S Iswaran declared that he will call upon the COI to look into the SingHealth cyber attack.

“It is an important step in getting to the bottom of the incident and keeping Singaporeans’ trust in our systems,” said Mr Iswaran.

According to the Terms of Reference for the COI, the COI’s task include establishing “the events and contributing factors leading to the cybersecurity attack on Singapore Health Services Private Limited (SingHealth)’s patient database system on or around 27 June” this year, and “the subsequent exfiltration of patient data therefrom”.

Annex B: The COI’s Terms of Reference regarding the SingHealth cybersecurity attack.

The COI will also investigate how the “Integrated Health Information Systems Private Limited (IHiS) and SingHealth responded” to the data breach, on top of recommending “measures to enhance the incident response plans for similar incidents” and to increase the protection of “SingHealth’s patient database system against” similar breaches.

Measures “to reduce the risk of such cybersecurity attacks on public sector IT systems which contain large databases of personal data, including in the other public healthcare clusters” will be discussed as a part of the COI’s task.

The COI will also, “in accordance with the provisions of the Inquiries Act”, hold public and private inquiries, and “consider the evidence put before the COI as led by the Attorney-General or his designates”, before submitting “a report of its proceedings, findings and recommendations” to Mr Iswaran by 31 Dec 2018.

Speaking at the MCI Workplan Seminar at Orchard Hotel yesterday, Mr Iswaran said: “This incident was a deliberate and sophisticated attack that caused the most serious breach of personal data in Singapore’s history.”

However, he added: “But we were also fortunate because it could have been worse. We were fortunate that there was early detection in the exfiltration of data.”

He also stressed that while the Government is channelling its maximum efforts to buttress its systems, Singapore cannot completely eliminate the risk of another cyber attack.

“This is the nature of this ongoing battle. The would-be attackers are constantly developing new capabilities even as we reinforce our IT systems,” he said.

“It is also crucial that we do not allow this incident, or any others like it, to derail our plans for a Smart Nation,” he added.

The cybersecurity breach affected the personal medical data such as the outpatient prescriptions of 1.5 million SingHealth patients, including that of Prime Minister Lee Hsien Loong.

Subscribe
Notify of
0 Comments
Inline Feedbacks
View all comments
You May Also Like

HDB extends LBS to 5-room and larger units as resale value of old flats continues to slide

It was reported in the media on the first day of the…

义顺综合交通枢纽9月8日启用

陆路交通管理局今早(7日)在脸书分享,义顺综合交通枢纽(ITH)将在下月8日启用。 陆交局分享,该综合交通枢纽将提供更包容性的公交服务,一些设施包括:专用登车和下车区、优先候车区设有椅子、无障碍设施、以及邻近有600各脚车停放处等。 陆交局希望随着该巴士转换站的启用,能让使用地铁、到附近超市购物、和转车的居民提供更多便利。 据了解,除了上述设施,义顺交通枢纽也将设立“爱心相助站”,鼓励同行乘客发挥爱心,主动上前协助有需要人士前往目的地。 在上月,陆交局仍在为义顺综合交通枢纽进行一系列的测试,包括巴士尖峰时段的应付能力,进出车站,以及乘客上下车等。 早在2008年,陆路交通发展总蓝图,宣布要在全岛兴建共10个综合交通枢纽,而为了让更多公众能享有其便利,当局决定在中期增建多三个综合交通枢纽。 至于义顺综合交通枢纽是第十个。该车站将有SMRT巴士有限公司管理。至于目前在临时转车站停留的巴士,在9月8日起都会转移到新开设的义顺综合交通枢纽。

再有五名巴士司机起诉新捷运

上周五(28日),由于无法在最后一次调解会议上达成和解,五名巴士司机决定再对新捷运公司(SBS Transit)发起诉讼。 去年9月,五名巴士司机分别状告本地巴士业者新捷运,指责后者违反加班工酬条款,支付不足工酬。不过在去年11月13日,工业仲裁庭(IAC)裁决新捷运未抵触雇佣法。 目前再有五名巴士司机入禀法庭,控诉新捷运公司未能对他们间隔值班( split shifts)期间的等候时间,予以补偿。 根据诉状,他们认为在凌晨4至5时间隔值班的“待班时间”,以及早上9时至中午1时期间,该公司未能予以基本时薪补偿。 此外,他们认为公司未补贴值夜班的18元津贴,违反服务协议下的第24(9)条款;以及违反雇佣法36(1)条,因为未能提供每周休息日的班表等。 同时,该公司还有所谓的“内置加班”工时( Built-In Overtime),司机们认为这使得他们比原本规定的44小时工作更长时间,从而违反雇佣大第38(1)条文。此外,也申诉公共假期工作仍领到按普通时薪计算的加班薪资。 加上此前八名巴士司机,如今对新捷运公司发起诉讼的司机总共有13人。 代表这些司机的拉维律师表示,届时需检视这些诉讼是否涉及违反人力部设下的条规,以及合同里有关休息日和加班费用的事项,是否有违雇佣法。

Malaysia High Court strikes out human rights group Lawyers for Liberty’s case against K Shanmugam, says MHA

The Ministry of Home Affairs (MHA) said on Thursday (1 October) that…