Data of 30,000 People who Used e2i Services May Have Been Breached

April 6, 20214:45 pm1758 views
Data of 30,000 People who Used e2i Services May Have Been Breached
Image Source: Pixabay

A malware attack has occurred to e2i (Employment and Employability Institute), the job and training arm of the National Trades Union Congress (NTUC). The malware attack, which happened on the mailbox of an employee at a third-party vendor, may have exposed the personal data of about 30,000 people who have used the company’s services.

In a media statement on Monday (Apr 5), e2i said the data incident was brought to its attention on Mar 12.

“The incident may have resulted in an unauthorised access to the affected mailbox that contained personal data of approximately 30,000 individuals who had used e2i’s services,” it said. “The potentially affected personal data may include names, NRIC, contact details, educational qualifications and employment details.”

Responding to the urgency, E2i said it has taken time to make an impact assessment due to the complexity of investigations, adding that the third-party vendor is i-vic International.

“We have worked with the utmost urgency with the vendor to ascertain the nature and extent of personal data that has been potentially affected,” it added. Together with the vendor, we have followed up immediately with mitigation measures to tighten the security of email and network systems and will be doing constant checks to monitor closely for any potential vulnerabilities.”

See also: Talking Cybersecurity with Foo Siang-tse: “Empower Employees to be the First Line of Defence against Cyber-Attacks”

E2i said it is reaching out to those who may have been potentially affected via email, SMS or phone to provide support on how best to manage any potential risks, Channel News Asia reports.

“We are deeply sorry for the anxiety this data incident may bring to our clients. The protection of our clients’ personal data is of utmost importance to us,” said CEO of e2i Gilbert Tan.

“Though the malware did not target e2i directly, cybersecurity threats are real and the protection of personal data is of top priority to us. e2i will be doing constant checks on both e2i’s as well as our vendor’s IT systems.”

Mr Tan added that e2i’s operations, services and systems remain unaffected. Job seekers can continue to seek employment and employability assistance with e2i.

Read also: Employees Have Little Knowledge about Ransomware Attack: Kaspersky Report

(Visited 1 times, 1 visits today)