29 May 2025
Income Insurance was alerted on Sunday, 25 May 2025, of a ransomware incident involving one of its third-party service providers, DataPost Pte Ltd (“DataPost”), which is responsible for the printing and mailing of some of its policyholders’ documents.
Based on DataPost’s preliminary investigations, at least 146 policyholders' bonus statements have been compromised. Policyholder information in the statements includes name, postal address, policy number and plan, and annual bonus for the year 2024. Investigations into the incident are ongoing and there could be more policyholders impacted.
Upon being notified of the incident, Income Insurance immediately suspended all printing jobs with DataPost. As an additional safeguard, Income Insurance also blocked connections to DataPost and reinforced firewall restrictions. To protect impacted policyholders, Income Insurance is on heightened alert to monitor for any suspicious or unusual account activity through its surveillance measures. Income Insurance is reaching out to all policyholders impacted or potentially impacted by this incident.
Income Insurance’s systems remain secure and are not compromised or affected by this incident. There is currently no evidence of unauthorised access to any of its digital platforms or systems. Income Insurance is working closely with the relevant authorities and DataPost to assess the full impact of DataPost’s incident.
Mr. Andrew Yeo, CEO of Income Insurance said, “Protecting the privacy and security of our policyholders’ personal information is of utmost importance. We believe in informing our policyholders promptly and empathise with the concern this incident may cause. We have taken swift action to safeguard our systems and suspended all printing jobs with DataPost. Our team is proactively contacting impacted and potentially impacted policyholders to inform them. We will continue to provide timely updates as more information becomes available.”
As a precautionary measure, Income Insurance reminds policyholders to remain vigilant against potential phishing attempts:
- Do not disclose your Income Insurance login credentials or one-time passwords (OTPs) to anyone.
- Do not click on links or open attachments in unsolicited emails or messages claiming to be from Income Insurance.
- Be cautious of unfamiliar QR codes and avoid scanning QR codes from unsolicited emails, text messages, or unknown flyers, which are common tools for scammers to distribute harmful QR codes. Only scan QR codes from Income Insurance’s official letters, emails or website.
- Access your policy details and services through verified channels, such as Income Insurance’s official website income.com.sg, My Income customer portal or My Income app.
- If you are or believe you have been the victim of a scam involving your Income Insurance policy, please contact 6788 1777 immediately. You can also report the matter via the National Anti-Scam Hotline at 1800-722-6688 or flag the number under the Scam Shield app.
Income Insurance prioritises policyholders’ security and ensures that links in its emails and SMS messages have the following safeguards:
- General Information Links: Links directing to the Income Insurance website, and social media pages such as LinkedIn, Facebook, and Instagram only provide general information and do not require personal details.
- Secure Digital Letters: To access digital letters, after clicking on a document link, policyholders must enter an OTP received via email or SMS. This serves as a second-factor authentication control.
- Protected Policy Documents: Links to digital communications offering access to policy documents, letters, statements, and notices are all password-protected to ensure security.
For more tips and information on staying safe online, please visit Income Insurance’s Security Advisory page.
Income Insurance was alerted on Sunday, 25 May 2025, of a ransomware incident involving one of its third-party service providers, DataPost Pte Ltd (“DataPost”), which is responsible for the printing and mailing of some of its policyholders’ documents.
Based on DataPost’s preliminary investigations, at least 146 policyholders' bonus statements have been compromised. Policyholder information in the statements includes name, postal address, policy number and plan, and annual bonus for the year 2024. Investigations into the incident are ongoing and there could be more policyholders impacted.
Upon being notified of the incident, Income Insurance immediately suspended all printing jobs with DataPost. As an additional safeguard, Income Insurance also blocked connections to DataPost and reinforced firewall restrictions. To protect impacted policyholders, Income Insurance is on heightened alert to monitor for any suspicious or unusual account activity through its surveillance measures. Income Insurance is reaching out to all policyholders impacted or potentially impacted by this incident.
Income Insurance’s systems remain secure and are not compromised or affected by this incident. There is currently no evidence of unauthorised access to any of its digital platforms or systems. Income Insurance is working closely with the relevant authorities and DataPost to assess the full impact of DataPost’s incident.
Mr. Andrew Yeo, CEO of Income Insurance said, “Protecting the privacy and security of our policyholders’ personal information is of utmost importance. We believe in informing our policyholders promptly and empathise with the concern this incident may cause. We have taken swift action to safeguard our systems and suspended all printing jobs with DataPost. Our team is proactively contacting impacted and potentially impacted policyholders to inform them. We will continue to provide timely updates as more information becomes available.”
As a precautionary measure, Income Insurance reminds policyholders to remain vigilant against potential phishing attempts:
- Do not disclose your Income Insurance login credentials or one-time passwords (OTPs) to anyone.
- Do not click on links or open attachments in unsolicited emails or messages claiming to be from Income Insurance.
- Be cautious of unfamiliar QR codes and avoid scanning QR codes from unsolicited emails, text messages, or unknown flyers, which are common tools for scammers to distribute harmful QR codes. Only scan QR codes from Income Insurance’s official letters, emails or website.
- Access your policy details and services through verified channels, such as Income Insurance’s official website income.com.sg, My Income customer portal or My Income app.
- If you are or believe you have been the victim of a scam involving your Income Insurance policy, please contact 6788 1777 immediately. You can also report the matter via the National Anti-Scam Hotline at 1800-722-6688 or flag the number under the Scam Shield app.
Income Insurance prioritises policyholders’ security and ensures that links in its emails and SMS messages have the following safeguards:
- General Information Links: Links directing to the Income Insurance website, and social media pages such as LinkedIn, Facebook, and Instagram only provide general information and do not require personal details.
- Secure Digital Letters: To access digital letters, after clicking on a document link, policyholders must enter an OTP received via email or SMS. This serves as a second-factor authentication control.
- Protected Policy Documents: Links to digital communications offering access to policy documents, letters, statements, and notices are all password-protected to ensure security.
For more tips and information on staying safe online, please visit Income Insurance’s Security Advisory page.
