Privacy Ninja



        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Personal Data of More Than 73,000 Patients Affected in Cyberattack On Eye Clinic

Personal Data of More Than 73,000 Patients Affected in Cyberattack On Eye Clinic

File photo of a patient at an eye clinic in Singapore. (File photo: AFP/Mohd Rasfan)

SINGAPORE: Personal data and clinical information of 73,466 patients were affected in a cyberattack on private practice Eye & Retina Surgeons earlier this month, with the root causes of the incident under investigation.

The affected data included patients’ names, addresses, identity card numbers, contact details and clinical information. No credit card or bank account information was accessed or compromised, the specialist eye clinic said in a press release on Wednesday (Aug 25).

The “illegal and sophisticated ransomware cyberattack” was carried out by an unknown party on Aug 6, said the clinic.

It affected servers and several computer terminals at the clinic’s branch in Camden Medical. The IT system at the clinic’s branch in Mount Elizabeth Novena Specialist Centre was not affected.

Also Read: What is Social Engineering and How Does it Work?

“To optimise data security, (Eye & Retina Surgeons) maintains segregated networks and active medical records are maintained separately on a cloud-based system and thus were not accessed or compromised,” the clinic added.

None of the practice’s clinical operations were affected, and its IT systems have been securely restored, it said.

The clinic said there has been no known release of sensitive data into the public domain to date, and that it will continue to monitor the situation closely.

“Patients are now being progressively informed of this cyber-incident,” it added.

The incident has been reported to the police, the Personal Data Protection Commission and the Singapore Computer Emergency Response Team (SingCERT).

Eye & Retina Surgeons said that its IT team has been working closely with the Cybersecurity Agency of Singapore (CSA) and the Ministry of Health (MOH) to investigate the root causes of the incident.

“All necessary measures to prevent a recurrence of this breach will be taken,” said the clinic, adding that it was working with cybersecurity experts and authorities to identify any potential areas in its IT systems that can be further secured.

Also Read: 4 Reasons Why You Need an Actively Scanning Antivirus Software

“(Eye & Retina Surgeons) regrets this breach and wishes to assure its patients that it takes patient confidentiality very seriously,” the clinic said.

This article originally appeared in CNA here.



Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection


We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.


Click one of our contacts below to chat on WhatsApp

× Chat with us