Data Breach Exposes Personal Information of 70,000 Individuals in Singapore

Data Breach Exposes Personal Information of 70,000 Individuals in Singapore

First seen 3 Jul 2026, 09:25 UTC ChannelnewsasiaBusinesstimes.SgStraitstimesSla.SgComputerweekly+2 93% similarity 71.0
Share:

Article Content

Browse articles
ThreatCluster

A cybersecurity incident involving IBM has compromised the personal data of approximately 70,000 individuals in Singapore. The Singapore Land Authority (SLA) reported unauthorized access to a dataset created for vendor development and testing, which was intended to contain only mock and anonymized data. However, real information, including names, NRIC numbers, and past property addresses, was exposed. The dataset was created in 1998 and updated periodically, but investigations revealed it was not properly anonymized. SLA confirmed that the affected environment is separate from operational systems, ensuring no compromise to live systems. IBM has revoked access to the affected environment, and SLA is notifying affected individuals. A police report has been filed, and the Personal Data Protection Commission has been notified. Investigations are ongoing to determine the cause of the breach.

Key Points: • Unauthorized access to a dataset containing real personal data of 70,000 individuals. • The dataset was intended for development and testing but was not properly anonymized. • SLA is working with IBM and authorities to investigate and has begun notifying affected individuals.

ThreatCluster AI

Timeline

2026-06-12
IBM notifies SLA of security incident
IBM informed SLA about unauthorized access to its managed cloud environment.
Channelnewsasia
2026-06-15
SLA informed of potential data exposure
IBM reported that there may have been unauthorized access to personal information.
Channelnewsasia
2026-07-03
SLA publicly discloses data breach
SLA announced the breach involving 70,000 individuals and the nature of the compromised data.
Computerweekly
2026-07-03
SLA begins notifying affected individuals
SLA has started contacting individuals whose data was compromised and advising on next steps.
Straitstimes
2026-07-03
Police report filed and authorities notified
SLA lodged a police report and notified the Personal Data Protection Commission about the incident.
Businesstimes.Sg

Community

Browse all →