Click For Photo: https://regmedia.co.uk/2016/07/05/shutterstock_smut.jpg
The theft of 1.5 million patient records, including those of Singapore's Prime Minister, from the city state's SingHealth hospital group by hackers could probably have been stopped had the IT department not been so useless, an inquiry has found.
In July, citizens were notified that miscreants had siphoned massive amounts of private information from the healthcare organization's database, which included the records of Premier Lee Hsien Loong, along with those of roughly a quarter of the island state's population.
Committee - Inquiry - Report - Hack - Thursday
A committee of inquiry published its report into the hack on Thursday, and said the attacker, or attackers, probably should have been stopped before they could make off with the data.
The report suggested that, since the Prime Minister was the main target, a “well-resourced” group “having an extensive command and control network, the capability to develop numerous customised tools, and a wide range of technical expertise,” was involved.
Cyber - Defences - Advanced - Persistent - Threat
“While our cyber defences will never be impregnable and it may be difficult to prevent an Advanced Persistent Threat (APT) from breaching the perimeter of the network, the success of the attacker in obtaining and exfiltrating the data was not inevitable,” the report stated.
In particular, the hackers exploited poorly secured Citrix servers that should have had two-factor authentication enabled for administrative accounts – but the IT gear just wasn't secured that way.
Internet - Connectivity - Citrix - Servers - Sunrise
Internet connectivity to the Citrix servers and the Sunrise Clinical Manager (SCM) software was a convenience rather than a necessity, increasing risk, the report added: “Network connectivity was maintained for the use of administrative tools and custom applications, but there was no necessity to do...
Wake Up To Breaking News!