In August 2022, Sembcorp Marine, a Singapore-based marine and offshore engineering group, fell victim to a cyberattack executed by an unauthorized third party. The attackers exploited vulnerabilities in third-party software to gain access to a segment of the company’s IT network. While Sembcorp Marine initiated immediate security response protocols, the incident raised concerns over potential data exposure, operational disruptions, and reputational damage. The breach did not explicitly confirm the theft of sensitive employee or customer data, nor did it result in ransomware deployment or systemic outages. However, the unauthorized access alone posed risks to financial integrity, internal communications, and stakeholder trust. The company’s proactive measures mitigated further escalation, but the incident underscored vulnerabilities in supply chain cybersecurity and the broader threat landscape facing critical infrastructure sectors.
TPRM report: https://www.rankiteo.com/company/sembcorp-marine-ltd
"id": "sem530092125",
"linkid": "sembcorp-marine-ltd",
"type": "Cyber Attack",
"date": "8/2022",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Marine & Offshore Engineering',
'location': 'Singapore',
'name': 'Sembcorp Marine',
'type': 'Corporation'}],
'attack_vector': 'Third-party software vulnerability',
'date_detected': '2022-08',
'date_publicly_disclosed': '2022-08',
'description': 'Sembcorp Marine reported a cyber incident where an '
'unauthorized party accessed a part of their IT network '
'through third-party software products.',
'impact': {'systems_affected': ['Part of the IT network']},
'initial_access_broker': {'entry_point': 'Third-party software products'},
'response': {'incident_response_plan_activated': True},
'title': 'Sembcorp Marine Cyber Incident (August 2022)',
'type': 'Unauthorized Access'}