Singapore's telecommunications sector faced a significant threat from the cyber-espionage group known as UNC3886, which targeted four leading companies: Singtel, StarHub, M1, and Simba Telecom. The attack, which spanned several months, was confirmed by the government in a statement released on Monday. While some systems were breached, officials stated that services remained operational and personal information was not compromised.
K. Shanmugam, Singapore's minister for national security, emphasized that the hackers utilized sophisticated methods, including rootkits, to maintain prolonged access to the networks. The intrusion did not result in the same level of damage experienced by other telecoms globally, particularly those targeted by the China-linked group Salt Typhoon.
Cybersecurity experts from Google-owned Mandiant have identified UNC3886 as a group likely acting on behalf of Beijing, which routinely conducts espionage operations. The telecommunications companies involved reported that they frequently encounter various cyber threats, including distributed denial-of-service attacks, and are committed to employing robust defense strategies to secure their systems.