Human Resources

Toggle

Article

passwords hacked on Singpass website to create fake work passes

SingPass accounts hacked to create fake work passes



Mark your calendars as the crowd's favourite candidate and employee experience conference, Talent Experience Forum is back!
Happening only in KL, Malaysia on 5 November. Register your seat early because you will be hearing top insights from C-suite and senior HR leaders from Dell, Digi, GoCar, IPG Mediabrands, Nestle, Tesco, Unilever and more.

In a joint statement, the Ministry of Manpower (MOM) and the Infocomm Development Authority (IDA) confirmed three hacked SingPass accounts were used to create six fraudulent work pass applications.

The three accounts were part of 1,560 compromised SingPass accounts discovered in June. Both matters have been referred to the local police.

MOM said the counterfeit work passes were immediately cancelled, and the Ministry “has also put in place additional measures to strengthen and further safeguard its work pass transactions”.

Both bodies encouraged SingPass users to improve their passwords by using one which is alphanumeric, contains eight to 24 characters, and preferably includes capital letters and symbols.

The IDA announced it is also enhancing the SingPass system, which is expected to be ready in Q3 2015.

“It is also looking in allowing users to set their own user names in the enhanced SingPass system, instead of using NRIC numbers,” the press release said.

“IDA will introduce further measures such as a second-factor authentication (2FA) for e-government transactions, particularly for those involving sensitive data.”

Image: Shutterstock



Less than a month to Learning & Development Asia. Speakers from Axiata, BHP Billiton Shared Services, Fave, HRDF, Samsung confirmed to speak with more than 120 attendees.
The region's largest conference for HR and L&D practitioners - you don't want to miss it.
Last few seats available, you don't want to miss it. Register now.

Read More News

Trending

Leave a Reply

You must be logged in to post a comment.