Fresh cybersecurity concerns have surfaced in Singapore after reports claimed that nearly 255 organisations linked to the country’s Critical Information Infrastructure (CII) were targeted following a dark web data leak.
The leaked dataset reportedly includes around 12,000 documents alleging intrusions into companies operating in key sectors such as telecommunications, energy, and finance. However, authorities have not confirmed any actual breach based on the evidence available so far.
The documents are believed to have originated from a group that publicly described itself as a cybersecurity firm but was allegedly involved in hacking operations. For security reasons, investigation agencies have not revealed the group’s name.
Concerns over critical sectors
Experts suggested the incident could be linked to state-backed cyber operations. Lim Yihao, senior advisor at the Google Threat Intelligence Group, said some documents pointed to possible cooperation between private contractors and state-associated elements.
He cautioned that it is too early to attribute the activity to any specific country. He added that the documents could also be fabricated or used for disinformation.
Cybersecurity professionals warned that attacks are becoming more complex. Small and medium-sized enterprises (SMEs) are increasingly targeted because they form part of the digital supply chain, offering services such as logistics, software development, and engineering support to larger infrastructure operators.
Rising threat landscape
The Cyber Security Agency of Singapore reported that suspected advanced persistent threat (APT) attacks increased more than 4 times between 2021 and 2024. Telecommunication networks are seen as attractive targets because access may allow monitoring of communication patterns and mobility data.
Analysts noted that cyber actors often operate in overlapping roles. Some run ransomware campaigns, others sell network access as brokers, and some hacktivist groups participate for political or ideological reasons. This mix makes investigations harder.
In 2024, ransomware incidents in Singapore rose by about 21 percent, with 159 cases reported. Manufacturing and professional services were among the most affected sectors, and most attacks targeted SMEs. Experts believe the actual number may be higher as many cases go unreported due to cost and limited expertise.
Authorities are strengthening cybersecurity standards, focusing on digital supply chains and faster incident reporting. International cooperation is also being enhanced as investigations continue to verify the authenticity of the leaked documents.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
