Aug 2017: The attacker gained an "initial presence" in SingHealth's network by infecting workstations.
Dec 2017 to May 2018: The attacker moved laterally in the network, using malware planted in one of the initially infected workstations to gain remote access and control the station.
TO READ THE FULL ARTICLE
Thank you for reading The Straits Times
You have reached one of our Premium stories. To continue reading, get access now or log in if you are a subscriber.
What is Premium?