Singapore Technologies Engineering Ltd (ST Engineering) has confirmed that its US subsidiary, VT San Antonio Aerospace, Inc., recently discovered a cybersecurity incident where a sophisticated group of cyber criminals, known as the Maze group, gained unauthorised access to its IT network and deployed a ransomware attack.
In an online statement, the company said that upon discovering the incident, it took immediate action, including disconnecting certain systems from the network, retaining leading third-party forensic advisors to help investigate the incident and notifying appropriate law enforcement authorities.
According to Ed Onwe, Vice President/General Manager of VT San Antonio Aerospace, Inc, the ongoing investigation indicates that the threat has been contained and is believed to be isolated to a limited part of ST Engineering’s commercial operations in the US. These businesses, including VT San Antonio Aerospace, continue to be operational.
ST Engineering’s IT network in Singapore and its other businesses has not been compromised.
Onwe added: “As part of this process, we are conducting a rigorous review of the incident and our systems to ensure that the data we are entrusted with remains safe and secure. This includes deploying advanced tools to remediate the intrusion and to restore systems. We are also taking steps to further strengthen the Company’s overall cybersecurity architecture.
Trust between our Company and all of our stakeholders – including our employees, customers and business partners – is core to our culture and business values. We are committed to responding to this incident transparently and proactively, and already have begun notifying potentially affected customers. We will be working with our customers and industry peers to share insights and any lessons learned so that they can learn from our experience.”