COMMITTEE OF INQUIRY INTO THE CYBER ATTACK ON SINGHEALTH TO BEGIN ACCEPTING WRITTEN PUBLIC SUBMISSIONS


11 September 2018 – The Committee of Inquiry (COI)  , convened to inquire into the events and contributing factors leading to the cyber attack on Singapore Health Services Private Limited (SingHealth)’s patient database system on or around 27 June 2018, is inviting the general public to submit written representations on any matter falling within items 3, 4 and 5 of its Terms of Reference (TOR), i.e.,

Recommend measures to enhance the incident response plans for similar incidents; 

Recommend measures to better protect SingHealth’s patient database system against similar cybersecurity attacks; 

In light of the cybersecurity attack and the findings above, recommend measures to reduce the risk of such cybersecurity attacks on public sector IT systems which contain large databases of personal data, including in the other public healthcare clusters; 

(The complete TORs are at Annex.)

Written representations should include the following information:

i. The author’s name, occupation, address, contact number and email address;
ii. A brief description of the organisation (if any) that the representation is made on behalf of;
iii. Any financial or other interest that the author (and the organisation he/ she represents) has in the COI’s TOR; and
iv. Whether the author is willing to appear before the COI to give evidence if required. 

Written representations should be sent to the Committee’s Secretary, Mr Thng E-Shen, or co-Secretary Ms Melanie Huang at: 

Address: Ministry of Communications and Information
#05-00 Old Hill Street Police Station
140 Hill Street
Singapore 179369

Email: coi_secretariat@mci.gov.sg  

The COI will take into consideration submissions on the specified items 3, 4 and 5 of the TOR which are received for the purposes of the inquiry. Separately, members of the public who may have any personal data related concerns in relation to the cyber attack on SingHealth can contact the Personal Data Protection Commission, through its website at www.pdpc.gov.sg

The COI will determine whether to call any of the authors to give evidence at the hearing and if so, whom. The COI may also seek clarification from authors on their written representations as well as subsequently publish any written representations it receives. The closing date for the submission of written representations is 31 October 2018, 5.00pm.

The COI will be holding a tranche of hearings from 21 September to 5 October 2018 at Court 5A of the Supreme Court. Details of which hearings will be private or public and the respective dates thereof will be furnished in due course.  

--------------------------------------------------------------------------------------------------------------------------

1  Convened on 24 July 2018, the chairman of the COI is Retired Senior (subsequently termed Chief) District Judge Mr Richard R Magnus. The other members of the Committee are Mr Lee Fook Sun, Executive Chairman of Ensign InfoSecurity Pte Ltd; Mr T K Udairam, Group Chief Operating Officer of Sheares Healthcare Management Pte Ltd; and Ms Cham Hui Fong, Assistant Secretary-General of the National Trades Union Congress.

 

MCI’s response to PQ on RuPauls' Drag Race show Parliament QAs Infocomm Media 15 Jan 19
Statement by Mr S iswaran, Minister-in-Charge of Cybersecurity, on the Government’s response to the report of the Committee of Inquiry into the cyber attack on SingHealth, during Parliamentary Sitting on 15 January 2019 Parliament QAs, Speeches Cyber Security, Personal Data 15 Jan 19
MCI’s response to PQ on measures to protect personal data of Facebook users Parliament QAs Personal Data 14 Jan 19
MCI’s response to PQ on telco operators’ call centres Parliament QAs Infocomm Media 14 Jan 19
Speech by Mr S Iswaran, Minister for Communications and Information, at the opening of Library@HarbourFront on 12 Jan 2019 Speeches Libraries 12 Jan 19
Public Report of the Committee of Inquiry (COI) into the cyber attack on Singapore Health Services Private Limited Patient Database Press Releases Cyber Security 10 Jan 19