23 July 2018

My Health Record bombed by S’pore hack

MyHealthRecord TheHill

The My Health Record roll-out has been marred by a major health data breach in Singapore, a federal Liberal MP breaking ranks and fresh attacks on the government’s messages to the public.

Labor health spokesperson Catherine King today called on the government to extend the three-month opt-out period which began last Monday, when 20,000 people bolted from the MHR program on the very first day.

She said Australians needed adequate time to “make an informed choice”.

“There has been significant and growing community concern about the My Health Record since the beginning of the op-out period on 16 July,” she said.

“The government has failed to effectively communicate with the public about what the My Health Record is and the potential benefits it could bring.

“It has also failed to explain to people how their rights will be respected and their privacy protected.”

The government’s approach in shifting from opt-in to opt-out to boost the uptake of the electronic health record had “fuelled suspicion and scepticism”, she said.

Breaking ranks with Prime Minister Malcolm Turnbull, Victorian Liberal MP Tim Wilson revealed that he had opted out because of freedom-of-choice objections.

He also appeared to disown the electronic health record system, whose development was initiated under Labor in 2011.

“It’s a situation we’ve inherited from the previous government, who legislated for My Health Records,” Mr Wilson told Sky News.

“There is nothing wrong with having a My Health Record system, but my position about whether people should be free to choose remains resolutely clear.”

Labor dubbed the roll-out a disaster after the rush of people to withdraw their consent from the centralised health record system.

The attrition rate last Monday would have been higher but for technical glitches that overwhelmed a call centre dealing with people trying to exit the scheme.

Several high-profile doctors have made it clear that they would be opting out of the MHR because of inadequate assurance on security and privacy controls.

In Singapore, a hacking raid on the government’s health database accessed the personal data of 1.5 million people in an attack aimed at Prime Minister Lee Hsien Loong, the government said on Friday.

“The attackers specifically and repeatedly targeted Prime Minister Lee Hsien Loong’s personal particulars and information on his outpatient dispensed medicines,” it said.

The attack, observed for a week from late June, was “the most serious breach of personal data” that the country has experienced.

“Investigations by the Cyber Security Agency of Singapore (CSA) and the Integrated Health Information System (IHiS) confirmed that this was a deliberate, targeted and well-planned cyberattack,” a government statement said.

“It was not the work of casual hackers or criminal gangs,” the statement by the Health Ministry and the Ministry of Communications and Information said.

The attackers copied the non-medical information of patients who had attended clinics between May 2015 and July 4.

Something to say?

Leave a Reply

7 Comments on "My Health Record bombed by S’pore hack"

Notify of

Sort by:   newest | oldest | most voted
Daiva Dawson
Daiva Dawson
8 months 27 days ago

I have opted out & am showing each & every patient I see daily how to also opt out. I am shocked by how few of them realised that this sneaky tactic by our glorious leaders was happening.

8 months 29 days ago

I will be opting out.


Billie Whiteson
8 months 29 days ago

I will be opting out of the MHR scheme.
I would love to know how many of my colleagues feel that their personal information is not something they want in any third party’s hands.
I remain to be convinced of the integrity of the current security arrangements.

Lou Lewis
Lou Lewis
8 months 29 days ago

I am now eagerly awaiting Run for the Hills opinion on this hack in Singapore!

Run for the hills
Run for the hills
8 months 28 days ago

Hi Lou,
It is possible for any system to be hacked.
This includes the computer you are using, your work computer and servers for Medicare, ATO, Centrelink, NDIS, Google, Facebook and even your bank. It’s the world we live in, better opt-out of all of the above.
Have a great day 🙂

8 months 29 days ago
Our regular medical meetings have illuminated important topics this year. The last meeting on the federal government ordained electronic medical record – My Health Record – was no exception. Despite good intentions, this initiative has many ‘doubting Thomases’ – and with good reason. Not all doctors are convinced that the contents of each patient’s electronic medical record will be that useful clinically. Many are suspicious of the government’s intent of using the data obtained for non-clinical purposes. Some doctors are not convinced that the security of the system can be really protected against determined cyber criminals. And both GPs and… Read more »
Stephan Hellmuth
8 months 29 days ago

Even without MHR we already have a digital footprint and no say in how this data is being used by Government/third parties with whom they communicate.
I for one will not opt out and I will continue with a discussion about the value of having a MHR,especially for my patients with allergies and complex health problems..
What has been hacked is not the MHR. Your digital record outside of MHR is still available.