By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
TechgoonduTechgoondu
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Search
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Reading: MyRepublic data breach, the latest to hit a Singapore Internet service provider, should raise alarms
Share
Aa
TechgoonduTechgoondu
Aa
  • Audio-visual
  • Enterprise
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
  • PC
  • Telecom
Search
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Follow US
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Techgoondu > Blog > Cybersecurity > MyRepublic data breach, the latest to hit a Singapore Internet service provider, should raise alarms
CybersecurityEnterpriseSoftwareTelecom

MyRepublic data breach, the latest to hit a Singapore Internet service provider, should raise alarms

Alfred Siew
Last updated: September 15, 2021 at 1:07 PM
Alfred Siew Published September 11, 2021
5 Min Read
SHARE
  • The MyRepublic website. SCREENSHOT: Alfred Siew

When MyRepublic revealed yesterday that the personal data of nearly 80,000 mobile subscribers was potentially stolen, it chose to say that the “unauthorised data access incident” had been “contained”.

However cleverly or carefully that statement was worded, the implications for those affected by this latest data breach are clear – they now risk having their identities stolen to commit fraud.

What hackers may have in their hands here are scanned copies of a Singaporean’s or permanent resident’s NRIC, which contains details like name, date of birth and address. For foreigners, this could be utility bill meant to verify one’s address.

A hacker who gets hold of this suddenly has a good amount of information to build towards a potential scam.

You should hope that your bank or credit card company has good enough checks to prevent a scammer from impersonating you in a call, for example.

An address is also a nice detail to have to reverse-search for any public activities you have performed with it. Registered a home business or set up an Internet website with it? That’s more data to be harvested.

So, while MyRepublic may say that the incident has been contained, what it means is that it will only affect 79,388 mobile subscribers. For these unfortunate victims, the fallout could be just beginning.

The fact that the incident took place on a third-party storage platform should do little to absolve MyRepublic of its responsibilities here. Keeping customer data safe is its job.

That said, users can also reduce risk by using SingPass to verify their identities when signing up for services. This means no more snapping photos of one’s NRIC and uploading them onto a website.

Perhaps what makes this latest incident more worrying is how frequently the recent attacks against Singapore telecom operators and Internet service providers have occurred this year.

Just last month, StarHub had the NRIC numbers, phone numbers and e-mail addresses of more than 57,000 customers stolen.

And in February, Singtel said 129,000 customers had their NRIC numbers and some combination of their names, dates of birth, mobile numbers and addresses stolen.

Plus, the bank account details of 28 former Singtel employees, along with the credit card details of 45 staff of a corporate customer with Singtel’s mobile service were also stolen.

Short of the penalties from the government regulator that are likely to follow, what can be done to shore up the cyber defences of these critical infrastructure providers?

It is impossible to keep out all attacks. But is it time to subject these important players in Singapore’s digital ecosystem to more stringent measures, such as regular independent audits, to ensure that they mitigate their technology risks?

How do their cybersecurity measures compare to widely accepted practices in similar industries in other countries? Can they band together as an industry to share insights to prevent similar incidents?

Ironically, MyRepublic had launched a cybersecurity service for small and medium enterprises just a month ago. What questions, you’d imagine, will these customers have for MyRepublic now?

To be sure, it’s a good thing that MyRepublic, as did StarHub earlier, is offering a free credit monitoring service for those affected. It is a signal that the industry recognises the impact of these incidents.

However, these recent incidents should worry not just users but also government regulators enough to mandate stronger protections for personal data.

If the setups at any critical infrastructure provider is not up to scratch, the result should not just be a fine, but a clearly validated commitment to audit its systems properly and beef up cybersecurity.

Again, it’s not possible to keep out hackers all the time but it is possible for these big players to learn from past lessons and reduce the risks of yet another data breach.

You Might Also Like

As TikTok faces a possible ban in the US, should users elsewhere be worried?

Foodpanda to use Gogoro electric scooters in battery swapping trial with Cycle & Carriage

RedCap: A new cellular IoT technology for the 5G era

Debate on computational photography misses what’s real, what’s lived outside a frame

Q&A: Delivering movies digitally and securely from around the world

TAGGED: cybersecurity, data breach, MyRepublic, Singapore

Sign up for the TG newsletter

Never miss anything again. Get the latest news and analysis in your inbox.

By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Alfred Siew September 11, 2021
Share this Article
Facebook Twitter Whatsapp Whatsapp LinkedIn Copy Link Print
Share
Avatar photo
By Alfred Siew
Follow:
Alfred is a writer, speaker and media instructor who has covered the telecom, media and technology scene for more than 20 years. Previously the technology correspondent for The Straits Times, he now edits the Techgoondu.com blog and runs his own technology and media consultancy.
Previous Article Singapore collectibles maker XM Studios raises S$4.5 million in tokenised fund raising
Next Article 5G prices in Singapore face pressure, as virtual operators ready trials
Leave a comment

Leave a Reply Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Stay Connected

Facebook Like
Twitter Follow

Latest News

As TikTok faces a possible ban in the US, should users elsewhere be worried?
Cybersecurity Internet March 24, 2023
Foodpanda to use Gogoro electric scooters in battery swapping trial with Cycle & Carriage
Enterprise Internet March 23, 2023
RedCap: A new cellular IoT technology for the 5G era
Enterprise Software Telecom March 23, 2023
Sony Playstation VR2 review: An immersive experience awaits
Gaming March 21, 2023
//

Techgoondu.com is published by Goondu Media Pte Ltd, a company registered and based in Singapore.

.

Started in June 2008 by technology journalists and ex-journalists in Singapore who share a common love for all things geeky and digital, the site now includes segments on personal computing, enterprise IT and Internet culture.

banner banner
Everyday DIY
PC needs fixing? Get your hands on with the latest tech tips
READ ON
banner banner
Leaders Q&A
What tomorrow looks like to those at the leading edge today
FIND OUT
banner banner
Advertise with us
Discover unique access and impact with TG custom content
SHOW ME

 

 

POWERED BY READYSPACE
The Techgoondu website is powered by and managed by Readyspace Web Hosting.

TechgoonduTechgoondu
Follow US

© 2023 Goondu Media Pte Ltd. All Rights Reserved | Privacy | Terms of Use | Advertise | About Us | Contact

Join Us!

Never miss anything again. Get the latest news and analysis in your inbox.

Zero spam, Unsubscribe at any time.
 

Loading Comments...
 

    Welcome Back!

    Sign in to your account

    Lost your password?