Cyber Incident Victim: Singapore Red Cross

On May 8, 2019, unauthorized individuals gained access to a section of the Singapore Red Cross (SRC) website, compromising the personal data of 4,297 potential blood donors. The breach exposed donors' names, blood types, and contact numbers. The SRC publicly disclosed the incident on May 16, 2019, confirming the intrusion occurred nine days earlier. This marked another significant cybersecurity incident in Singapore, a nation recognized for its advanced digital infrastructure that had experienced multiple high-profile attacks in preceding years. The compromised data specifically affected individuals who had registered as potential donors through the organization's online platform. No medical records or financial information were reported as exposed in this breach.

The Singapore Red Cross did not specify the exact method of intrusion or duration of unauthorized access in its public statement. The organization acknowledged the breach as part of Singapore's ongoing cybersecurity challenges, referencing the 2018 SingHealth incident where 1.5 million citizens' health records were stolen. While the SRC confirmed the compromise of donor information, no details were provided about whether the data appeared in underground forums or was used maliciously. The disclosure highlighted persistent vulnerabilities in Singapore's digital ecosystem despite its technological sophistication, with healthcare-related organizations appearing particularly targeted. This incident represented the second major breach of medical-related data in Singapore within a twelve-month period.