- POSTED: 20 May 2014 22:56
- UPDATED: 22 May 2014 21:47
Organisers of this year's National Day Parade (NDP) are assuring those who applied for tickets via their website that their personal data has not been leaked.
SINGAPORE: Organisers of this year's National Day Parade (NDP) are assuring those who applied for tickets via their website that their personal data has not been leaked.
Blogger Zit Seng on Monday highlighted a security flaw of the site eballot.ndp.org.sg.
He pointed out that it does not use Secure Sockets Layer (SSL) encryption, and this could make personal information submitted by those balloting for tickets easily accessible.
He also posted a screenshot on his blog detailing the data that could be accessed, such as a person's name, identity card and telephone numbers.
The National Day Parade Executive Committee said it has reviewed its IT security infrastructure and would like to reassure Singaporeans that no personal information had been compromised.
Still, it plans to further enhance security of its website.
The committee said Singaporeans will still be able to apply for tickets during the upgrading of the NDP website.
Applications, which close on May 25, can also be made via SMS as well as through SAM and AXS machines.
UPDATE: As of Thursday (May 22), the Mindef Director for Public Affairs, Colonel Kenneth Liow said the website security weakness was rectified on Wednesday (May 21).