High-Profile Cybersecurity Breaches in Asia

news

High-Profile Cybersecurity Breaches in Asia

Recent High-Profile Data Breaches in Asia Spark Urgency for Stronger Cybersecurity Measures: SingHealth, Cathay Pacific, and Jollibee. Here's How Corporations Respond.

In the ever-evolving landscape of cybersecurity, three recent and prominent data breaches have sent shockwaves through the industry, highlighting the pressing imperative for organizations to prioritize and fortify their data security measures. These significant breaches underscore the critical need for proactive steps in safeguarding sensitive information from malicious actors and reinforcing the resilience of digital systems.

SingHealth Data Breach

In July 2018, Singapore's largest healthcare group, SingHealth, suffered a major data breach in which the personal data of 1.5 million patients, including the country's Prime Minister, was stolen. The breach was caused by a phishing attack on a front-end workstation, which allowed attackers to gain access to the organisation's database.

Cathay Pacific Data Breach

In October 2018, Hong Kong-based airline Cathay Pacific announced that it had suffered a data breach in which the personal data of 9.4 million passengers had been stolen. The breach, which occurred between March and May 2018, was caused by a vulnerability in the company's IT system.

Jollibee Foods Corporation Data Breach

In May 2020, Philippine fast-food chain Jollibee Foods Corporation suffered a data breach in which the personal information of around 18 million customers was exposed. The breach was caused by a misconfigured server that had been left open to the internet.

Responses by Corporations in Asia to Be Compliant

In response to the growing cybersecurity threats, many corporations in Asia have taken steps to be compliant with cybersecurity regulations and implement appropriate security measures. Here are some examples:

Singapore's Cybersecurity Regulations

The Singapore government has implemented strict cybersecurity regulations, including the Personal Data Protection Act and the Cybersecurity Act. Many corporations in Singapore have taken steps to be compliant with these regulations, such as implementing appropriate security measures to protect personal data and reporting any data breaches to the relevant authorities.

Japanese Companies Adopting ISO/IEC 27001

Many Japanese companies have adopted ISO/IEC 27001 as a best practice for managing their information security risks. The standard provides a framework for organisations to implement an information security management system (ISMS) to protect their data and systems from cyber threats.

Chinese Companies Implementing Cybersecurity Law

China's Cybersecurity Law, which came into effect in 2017, requires network operators to implement "reasonable" security measures to protect against cyber threats and to report any data breaches to the relevant authorities. Many Chinese companies have implemented appropriate security measures to comply with this law.

Indian Companies Adapting to Information Technology Act

The Indian government's Information Technology Act provides legal recognition to electronic transactions and establishes penalties for cybercrimes. Many