ST Engineering network here not affected by US cyber attack

Singapore's biggest defence technology firm ST Engineering yesterday said its IT network in Singapore and its other businesses have not been compromised by a cyber attack on its United States subsidiary.

The ransomware attack on the subsidiary, VT San Antonio Aerospace, led to the leakage of data, including contract details with various governments - such as Peru and Argentina - and agencies including the National Aeronautics and Space Administration.

Some 1.5 terabytes of data is believed to have been stolen.

ST Engineering said in a statement yesterday that the disruption has been confined to VT San Antonio Aerospace and pledged to respond to the incident "transparently and proactively".

"This includes deploying advanced tools to remediate the intrusion and to restore the affected systems.

"ST Engineering is also taking steps to further strengthen its overall cyber-security architecture," the firm said. "(Our) US subsidiary has begun notifying potentially affected customers."

A group of hackers known as the Maze group had attacked VT San Antonio Aerospace and put about 50 megabytes of leaked data on the Dark Web and public forums, according to cyber security firm Cyfirma on Saturday.

It is not known how long Maze had continuous access to the company's network, although Cyfirma believes the subsidiary's cyber defences could have been breached as early as March.

The hack was discovered last Friday.

Maze is believed to have made public some of the data from its heist after VT San Antonio Aerospace refused to pay the ransom demanded.

ST Engineering yesterday said it has taken a series of short-and long-term steps to avoid a repeat of the incursion, such as disconnecting certain systems from the network and calling in third-party forensic advisers to help in investigations "immediately".

It has also notified law enforcement authorities and is conducting a rigorous review to make sure the rest of its data is safe.

  • 1.5

  • Amount of data in terabytes that is believed to have been stolen.

"This cyber-security incident is not expected to have any material impact on the consolidated net tangible assets or consolidated earnings per share of the ST Engineering Group for the current financial year," it added.

ST Engineering is involved in highly critical aerospace, electronics, marine and land systems industries in many countries, with the Singapore Armed Forces as its top client.

Singapore's sovereign wealth fund Temasek holds a more than 50 per cent stake in the company.

A version of this article appeared in the print edition of The Straits Times on June 08, 2020, with the headline 'ST Engineering network here not affected by US cyber attack'. Subscribe