Skip to main content

Chinese National Convicted in Major UOB Bank Data Breach

 



A former employee of United Overseas Bank, a 30-year-old Chinese national and Singapore permanent resident named Cao Wenqing, was convicted in a Singapore district court on Tuesday, October 14th. She was found guilty on a total of 27 charges for her role in a significant data breach that compromised the private information of more than one thousand bank customers.

The conviction comprises 14 charges under the Computer Misuse Act and 13 charges under the Banking Act. Cao Wenqing had contested these charges during her trial, maintaining that she was an innocent victim deceived by individuals falsely claiming to be officers from the Shanghai police. However, District Judge James Elisha Lee, presiding over the case, found her defense lacking.

The judge emphasized that Cao Wenqing, possessing tertiary education qualifications and having undergone specific training from United Overseas Bank, was fully conscious of the highly confidential nature of customer data. She was explicitly aware of the strict restrictions against its unauthorized disclosure and understood that extracting customer information for personal reasons was a direct violation of the bank's internal policies. Judge Lee stated it was "unreasonable" that Cao did not take any steps to verify the identities of the individuals who contacted her, especially since she later demonstrated the ability to do so by calling the Shanghai police herself after reading about a similar scam.

According to the prosecution's case, presented by Deputy Public Prosecutor Ryan Lim, Cao Wenqing was employed as a junior officer in the mortgage department at United Overseas Bank. In this role, her access to the customer database was strictly limited to official duties, which involved selling mortgages to new clients and servicing the accounts of existing mortgage holders.

The illegal activity began in March 2021 when Cao was contacted by persons using the names "Xiang Ying Dong" and "Captain Lu." Believing them to be legitimate authorities, she agreed to assist "Captain Lu" on a voluntary basis. Following his instructions, she used her work-issued laptop to access the bank's internal systems. She systematically searched for customers with common Chinese surnames, then manually checked their profiles to confirm they were Chinese nationals.

For each identified customer, she compiled a list of their sensitive personal details, including full names, identification numbers, bank account balances, and contact numbers, into an Excel spreadsheet. After gathering data on batches of 50 to 100 individuals, she would take photographs of her computer screen displaying the spreadsheet and send these images to "Captain Lu" via the WhatsApp messaging platform, subsequently deleting the photos from her device. She also performed targeted searches on specific individuals requested by the scammer and sent screenshots directly from the customer database.

The prosecution revealed that Cao Wenqing's motivation for complying with these requests was a combination of fear and self-preservation. She was worried about fictitious investigations being launched against her and felt pressured to cooperate with individuals she perceived as powerful Chinese police officials. She also sought to avoid being forced to return to China and potentially losing her job in Singapore. Despite knowing her actions were against both bank policy and Singaporean law, she proceeded with the data leak. It was only on April 22, 2021, after realizing she had been defrauded, that she reported the entire matter to the Singapore Police Force. The case has been adjourned for mitigation and sentencing in December.

Labels:
Location: Singapore

Comments

Post a Comment

Popular posts from this blog

New Punggol Northshore BTO Plagued by Water Seepage and Electrical Hazards

  ***Update: HDB, Maincon and Consultant has came down to the unit to check. Will update on status once we have more information. A Punggol Northshore BTO homeowner, who moved into his newly renovated flat in July 2024, has voiced frustration over severe water leakage issues that have left his unit unsafe and unlivable. Water has been observed seeping from an electrical powerpoint, with puddles forming on the floor and walls showing bubbling and signs of damage from moisture. The source of the leak appears to be an external wall adjacent to the master bedroom, according to assessments by the main contractor. However, the leakage has already caused significant damage to the flat's walls and paintwork, leaving the homeowner distressed. Adding to the frustration, the main contractor advised the homeowner to avoid using the affected power switches in the living room and bedroom due to the risk of a short circuit. Despite the warning, the homeowner has no choice but to turn on the light...
Post a Comment
Read more

The Gateway to Singapore’s Digital Future, Punggol Coast MRT Station Opens Today!

  The Punggol Coast MRT station, the 17th station on the North East Line (NEL), officially opened on December 10, 2024. Located in the heart of the Punggol Digital District (PDD), it extends the NEL’s total length to 22 km and enhances accessibility for over 200,000 households within a 10-minute walk of an NEL station. Senior Minister Teo Chee Hean, speaking at the launch, emphasized the station's role in transforming Punggol Town into a vibrant, connected, and sustainable hub. Travel time for Punggol North residents to Outram Park is now reduced to 45 minutes, down from 60 minutes. Transport Minister Chee Hong Tat highlighted the foresight in planning Singapore’s transport infrastructure, such as provisions made two decades ago for the Cross Island Line interchange at Punggol MRT station. This long-term approach underscores Singapore’s commitment to future generations. The station integrates seamlessly with PDD, a 50-hectare smart and sustainable district focusing on digital indus...
Post a Comment
Read more

Crackdown on Illegal Ride-Hailing with 4 Drivers Caught in LTA Operation

  In a recent operation conducted by the Land Transport Authority (LTA) of Singapore, four drivers were caught and had their vehicles impounded for providing illegal ride-hailing services. These unauthorized services operated both within Singapore and across the border to Malaysia, posing significant risks to passengers. The LTA has issued a stern warning to the public, advising against using such illegal services due to the lack of proper licensing and insurance, which can leave passengers vulnerable in the event of accidents. The operation underscores LTA’s commitment to ensuring the safety and regulation of ride-hailing services in Singapore. Drivers caught offering illegal ride-hailing services without a valid Public Service Vehicle (PSV) Licence face severe penalties, including fines of up to $3,000, imprisonment for up to six months, or both. These measures are in place to deter unlicensed operators and protect passengers from potential harm. Illegal ride-hailing services oft...
1 comment
Read more