Singapore Technologies Engineering (ST Engineering) said Sunday (7 June) that its US subsidiary, VT San Antonio Aerospace, recently discovered a cybersecurity incident where a sophisticated group of cyber criminals using the so-called MAZE ransomware, gained unauthorised access to its IT network. Investigations into the incident are ongoing. Media reports in the US say this is the second time VT San Antonio Aerospace has been attacked, the first coming in March.
The company said the investigation indicates the threat has been contained and is believed to be isolated to a limited part of ST Engineering’s commercial operations in the US. These businesses, including VT San Antonio Aerospace, continue to be operational. ST Engineering’s IT network in Singapore and its other businesses have not been compromised. Upon discovering the incident, ST Engineering disconnected certain systems from the network, retaining leading third-party forensic advisors to help investigate the incident and notified law enforcement authorities.
“ST Engineering takes information security extremely seriously and as part of this process, it is conducting a rigorous review of the incident and its systems to ensure that the data it is entrusted with remains safe and secure,” the company said. “This includes deploying advanced tools to remediate the intrusion and to restore the affected systems. ST Engineering is also taking steps to further strengthen its overall cybersecurity architecture.”