Skip to main content

ICA Suspends Online Address Change Service After 80 Cases of Unauthorized Changes

 




The Immigration and Checkpoints Authority (ICA) has suspended its electronic Change of Address (eCOA) service after uncovering about 80 unauthorized attempts to fraudulently change residential addresses using stolen or compromised Singpass accounts.

The fraudulent activities targeted the “others” option in the eCOA service, introduced in October 2020 to allow proxies to assist individuals in updating their addresses online. This module has been temporarily disabled while the rest of the eCOA service is under review, slated to resume on Jan. 14 with enhanced security measures.

How the Fraud Was Carried Out

The perpetrators exploited compromised Singpass accounts by acquiring victims’ NRIC numbers and issue dates, enabling them to change addresses through the eCOA service. A verification PIN mailer was sent to the new fraudulent address, which the perpetrators used to confirm the change. This new address was then used to reset Singpass account passwords, allowing access to the victims' accounts for further criminal activity.

According to ICA Commissioner Marvin Sim, the motive appeared to be the creation of mule accounts to facilitate scams and cybercrimes. There was no indication of foreign actors’ involvement, and the suspects are believed to be locals.

ICA's Response

Following reports of unauthorized changes since September 2024, ICA launched investigations that revealed a growing number of cases, prompting immediate action. Commissioner Sim stressed that the issue was not due to a system glitch but a deliberate misuse of the service.

In a press conference, Sim assured that ICA is committed to acting decisively against such activities and emphasized the importance of protecting personal data and public trust in digital government services.

Enhanced Security Measures

To prevent future misuse, ICA announced plans to introduce face verification technology for Singpass logins and is considering a One-Time Password (OTP) requirement for the proxy module. The OTP would ensure that individuals explicitly authorize address changes made by proxies.

The proxy option will remain suspended until ICA is confident that additional safeguards are effective.

Support for Affected Individuals

ICA is assisting victims by reverting their addresses and replacing compromised NRICs with updated issue dates. Those whose Singpass accounts may have been compromised will have their accounts reset in collaboration with GovTech.

Members of the public are encouraged to verify their registered addresses on ICA’s website and report any inaccuracies immediately.

Interim Measures

While the eCOA service is temporarily unavailable, individuals needing proxy assistance can visit the ICA Building’s IC Unit during operational hours.

The Singapore Police Force (SPF) confirmed that investigations are ongoing but declined to comment on whether arrests had been made or if other government services had been accessed using compromised accounts.

Comments

Popular posts from this blog

New Punggol Northshore BTO Plagued by Water Seepage and Electrical Hazards

  ***Update: HDB, Maincon and Consultant has came down to the unit to check. Will update on status once we have more information. A Punggol Northshore BTO homeowner, who moved into his newly renovated flat in July 2024, has voiced frustration over severe water leakage issues that have left his unit unsafe and unlivable. Water has been observed seeping from an electrical powerpoint, with puddles forming on the floor and walls showing bubbling and signs of damage from moisture. The source of the leak appears to be an external wall adjacent to the master bedroom, according to assessments by the main contractor. However, the leakage has already caused significant damage to the flat's walls and paintwork, leaving the homeowner distressed. Adding to the frustration, the main contractor advised the homeowner to avoid using the affected power switches in the living room and bedroom due to the risk of a short circuit. Despite the warning, the homeowner has no choice but to turn on the light...

The Gateway to Singapore’s Digital Future, Punggol Coast MRT Station Opens Today!

  The Punggol Coast MRT station, the 17th station on the North East Line (NEL), officially opened on December 10, 2024. Located in the heart of the Punggol Digital District (PDD), it extends the NEL’s total length to 22 km and enhances accessibility for over 200,000 households within a 10-minute walk of an NEL station. Senior Minister Teo Chee Hean, speaking at the launch, emphasized the station's role in transforming Punggol Town into a vibrant, connected, and sustainable hub. Travel time for Punggol North residents to Outram Park is now reduced to 45 minutes, down from 60 minutes. Transport Minister Chee Hong Tat highlighted the foresight in planning Singapore’s transport infrastructure, such as provisions made two decades ago for the Cross Island Line interchange at Punggol MRT station. This long-term approach underscores Singapore’s commitment to future generations. The station integrates seamlessly with PDD, a 50-hectare smart and sustainable district focusing on digital indus...

Crackdown on Illegal Ride-Hailing with 4 Drivers Caught in LTA Operation

  In a recent operation conducted by the Land Transport Authority (LTA) of Singapore, four drivers were caught and had their vehicles impounded for providing illegal ride-hailing services. These unauthorized services operated both within Singapore and across the border to Malaysia, posing significant risks to passengers. The LTA has issued a stern warning to the public, advising against using such illegal services due to the lack of proper licensing and insurance, which can leave passengers vulnerable in the event of accidents. The operation underscores LTA’s commitment to ensuring the safety and regulation of ride-hailing services in Singapore. Drivers caught offering illegal ride-hailing services without a valid Public Service Vehicle (PSV) Licence face severe penalties, including fines of up to $3,000, imprisonment for up to six months, or both. These measures are in place to deter unlicensed operators and protect passengers from potential harm. Illegal ride-hailing services oft...