China-Backed Salt Typhoon Hackers Breach All Four Major Telecom Providers in Singapore Singapore has confirmed that China-linked hacking group Salt Typhoon successfully infiltrated the critical systems of its four largest telecommunications carriers Singtel, StarHub, M1, and TPG Telecom serving the nation’s entire 5.9 million population. The government disclosed the breach today, revealing that while the attackers gained "limited access to critical systems," they were prevented from disrupting services or stealing customer data. The incident reflects a broader pattern of state-sponsored cyberattacks targeting global telecom infrastructure, with Salt Typhoon previously linked to breaches in the U.S. and Europe. The group, tracked by cybersecurity firm Mandiant, is known for exploiting vulnerabilities in network equipment to establish long-term access, often for intelligence-gathering purposes. The compromise of all four major carriers underscores the strategic nature of the attack, as telecom networks underpin government communications, financial transactions, and national security. While Singaporean officials emphasized that the breach was contained, the incident highlights the growing threat posed by coordinated, well-resourced cyber campaigns targeting critical infrastructure.

Australia’s second-largest internet provider, TPG (parent company of iiNet), suffered a data breach where an unauthorized third party accessed its order management system after stealing an employee’s credentials. The breach exposed ~280,000 active email addresses, ~20,000 landline phone numbers, ~10,000 user names/street addresses/phone numbers, and ~1,700 modem setup passwords. While no financial data (credit cards, banking details) or identity documents (passports, driver’s licenses) were compromised, the leaked personal information poses risks of phishing, fraud, and targeted scams. TPG delayed disclosure by four days before notifying affected customers, shareholders, and regulators (e.g., Australian Cyber Security Centre, OAIC). The company claimed no broader system impact but is investigating with external cybersecurity experts. Customers were advised to monitor for suspicious communications, and a dedicated hotline was established. The breach stems from employee credential theft, highlighting internal security vulnerabilities.

TPG Telecom, the parent company of Australia’s second-largest ISP iiNet, suffered a major data breach after an unknown third party gained unauthorized access to its order management system using stolen employee credentials. The breach, discovered on 16 August 2025, exposed limited but sensitive customer data, including: - 280,000 active email addresses - 20,000 landline phone numbers - 10,000 usernames, street addresses, and phone numbers - 1,700 modem setup passwords - An unspecified number of inactive email addresses and landline numbers While no financial data (credit cards, identity documents) was compromised, the breach involved personal and contact details, raising risks of phishing, spam, and targeted scams. TPG Telecom engaged external cybersecurity experts, notified regulatory bodies (ACSC, OAIC, ASD), and contained the breach by revoking unauthorized access. The incident highlights vulnerabilities from credential theft, possibly linked to infostealer malware, a growing threat in Australia. Authorities were alerted as part of compliance with Australia’s Cyber Security Act (2024) and broader efforts under the 2023-2030 Cyber Security Strategy to mitigate such risks.

Internet services provider TPG Telecom Ltd (TPG.AX), fell victim to a high-profile cyberattack, that compromised the emails of up to 15,000 of its corporate customers. The primary aim of the hack of the hosted exchange service was to search for customers' cryptocurrency and financial information. The company implemented measures to stop unauthorised access and contacted all customers on the exchange service affected by the incident.