The Infocomm Development Authority of Singapore (IDA) revealed in a press conference yesterday that a total of 1,560 SingPass accounts have been cracked.
SingPass is an access code created for Singaporeans aged 15 and above to perform more than 340 online transactions with government agencies such as the Central Provident Fund (CPF) and Inland Revenue Authority of Singapore (IRAS).
About a quarter of these breached accounts have had their passwords illegally reset, according to a TODAY report.
The breach was detected over the weekend when 11 SingPass users enquired about letters they'd received informing them they'd requested for a password reset, though they hadn't.
A police report was lodged on June 3.
According to TODAY, the IDA is currently considering the possibility of installing a mechanism that sends out alerts when a hitherto infrequent SingPass user's accout sees a spike in activity, for example. They're also considering a two-factor authentication system, though providing over three million current SingPass account holders with a security token, as well as having to revamp the system altogether, may pose a cost issue.
In the meantime, users are encouraged to change their passwords regularly and install anti-virus software on their computer.
Photo: Screenshot of SingPass website homepage
Read Also: Singapore banks told to boost security after data theft
The Infocomm Development Authority of Singapore (IDA) revealed in a press conference yesterday that a total of 1,560 SingPass accounts have been cracked.
SingPass is an access code created for Singaporeans aged 15 and above to perform more than 340 online transactions with government agencies such as the Central Provident Fund (CPF) and Inland Revenue Authority of Singapore (IRAS).
About a quarter of these breached accounts have had their passwords illegally reset, according to a TODAY report.
The breach was detected over the weekend when 11 SingPass users enquired about letters they'd received informing them they'd requested for a password reset, though they hadn't.
A police report was lodged on June 3.
According to TODAY, the IDA is currently considering the possibility of installing a mechanism that sends out alerts when a hitherto infrequent SingPass user's accout sees a spike in activity, for example. They're also considering a two-factor authentication system, though providing over three million current SingPass account holders with a security token, as well as having to revamp the system altogether, may pose a cost issue.
In the meantime, users are encouraged to change their passwords regularly and install anti-virus software on their computer.
Photo: Screenshot of SingPass website homepage
Read Also: Singapore banks told to boost security after data theft