Cyber Incident Victim: Singapore government employees
Date:
Feb 2014
Location:
Singapore
Summary
Hacktivist group Anonymous leaked personal information of Singapore government employees, including names, email addresses, passport numbers, and phone numbers, in protest against arrests they considered unjust. The group threatened further disclosures unless authorities demonstrated fairness, though inconsistencies were noted in the leaked data such as outdated contact details and mismatched identification information. Anonymous specifically referenced two cases involving alleged cyber intrusions, prompting government cybersecurity agencies to investigate potential breaches and reinforce existing security protocols while coordinating with law enforcement.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
In February 2014, the hacktivist group Anonymous threatened to release personal data of Singapore government employees in retaliation for arrests of individuals linked to the group. On February 7, Anonymous provided ZDNet with a statement containing personal information of 10 employees, including names, government email addresses, birthdates, nationalities, passport numbers, and mobile phone numbers. The group claimed this data represented a small portion of a larger file containing thousands of records from a Singaporean security corporation with government contracts. Based on email domains, affected agencies included the Singapore Prison Service, Immigration and Checkpoints Authority, PUB water agency, Ministry of Manpower, National Library Board, Singapore Police Force, National Environment Agency, Central Narcotics Bureau, and Accounting and Corporate Regulatory Authority. Anonymous issued an ultimatum demanding "justice and fairness," warning authorities they would face "the final boss of the internet" if demands weren't met. However, ZDNet's verification found inconsistencies in the leaked data, including outdated phone numbers, mismatched passport-birthdate combinations, and invalid email addresses.
The incident stemmed from Anonymous' objections to two November 2013 arrests: James Raj Arokiasamy (allegedly the hacker "Messiah" behind government website defacements) and Melvin Teo and Delson Moo (arrested for modifying a government server via cross-site scripting). The group criticized authorities for impeding James' legal access during psychiatric evaluation and deemed the charges against Teo and Moo "nonsensical." Singapore's Infocomm Development Authority (IDA) responded by investigating potential compromises of employee records and alerting police. IDA emphasized all government agencies followed mandated security protocols including regular vulnerability scans, security audits, and third-party vendor agreements requiring equivalent protection standards. This followed Anonymous' earlier January 2014 call for a "Tweet Storm" against government accounts protesting news site licensing rules, though the campaign failed to materialize and IDA had dismissed its potential infrastructure impact. By February 8, Anonymous had published their statement on Pastebin containing sensitive personal information.