HomeTeamNS servers hit by ransomware attack

Some HomeTeamNS servers have been hit by a ransomware attack discovered on Feb. 25, but no data appears to have been stolen.

HomeTeamNS said in a statement on Mar. 3 it disabled the affected servers that contained data of employees and former employees, as well as the vehicle details of some members and affiliate members.

In response, the affected servers were isolated from its IT network.

Third-party experts were brought in from outside the organisation to investigate and fix the problem.

The organisation is also working with the authorities, it said.

HomeTeamNS added: “As part of our remediation efforts, the passwords of all our administrative accounts have been changed, and security scans and firewalls have been further enhanced to strengthen our network security.”

“At this time, there is no evidence of data extraction, but we are monitoring closely,” it said.

Those affected have been contacted to assist them with protecting themselves from phishing or unauthorised transactions.

Ransomware attacks involve threat actors demanding ransom in exchange for unlocking files on servers using malicious software.

HomeTeamNS, a non-profit organisation, has a membership base of more than 260,000 NSmen.

It is set up for national servicemen (NSmen) from the Singapore Police Force (SPF) and the Singapore Civil Defence Force (SCDF), and open to employees and former employees of Home Team agencies, as well as their family and friends.

It has four clubhouses.

No details were provided on the number of individuals affected.

Top photo via Google Maps