• Home
  • cyber
  • StarHub, Singtel, TPG Telecom and M1: China-Backed Hackers Breach Singapore's Top 4 Telecoms
cyber Cyber Attack

StarHub, Singtel, TPG Telecom and M1: China-Backed Hackers Breach Singapore's Top 4 Telecoms

Feb 10, 2026 2 min read
StarHub, Singtel, TPG Telecom and M1: China-Backed Hackers Breach Singapore's Top 4 Telecoms

China-Backed Salt Typhoon Hackers Breach All Four Major Telecom Providers in Singapore

Singapore has confirmed that China-linked hacking group Salt Typhoon successfully infiltrated the critical systems of its four largest telecommunications carriers Singtel, StarHub, M1, and TPG Telecom serving the nation’s entire 5.9 million population. The government disclosed the breach today, revealing that while the attackers gained "limited access to critical systems," they were prevented from disrupting services or stealing customer data.

The incident reflects a broader pattern of state-sponsored cyberattacks targeting global telecom infrastructure, with Salt Typhoon previously linked to breaches in the U.S. and Europe. The group, tracked by cybersecurity firm Mandiant, is known for exploiting vulnerabilities in network equipment to establish long-term access, often for intelligence-gathering purposes.

The compromise of all four major carriers underscores the strategic nature of the attack, as telecom networks underpin government communications, financial transactions, and national security. While Singaporean officials emphasized that the breach was contained, the incident highlights the growing threat posed by coordinated, well-resourced cyber campaigns targeting critical infrastructure.

Source: https://www.techbuzz.ai/articles/china-backed-hackers-breach-singapore-s-top-4-telecoms

StarHub TPRM report: https://www.rankiteo.com/company/starhub

Singtel TPRM report: https://www.rankiteo.com/company/singtel

TPG Telecom TPRM report: https://www.rankiteo.com/company/tpg-telecom

M1 TPRM report: https://www.rankiteo.com/company/m1-limited

"id": "tpgm1-sinsta1770746977",
"linkid": "tpg-telecom, m1-limited, singtel, starhub",
"type": "Cyber Attack",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': "5.9 million (nation's entire "
                                              'population)',
                        'industry': 'Telecommunications',
                        'location': 'Singapore',
                        'name': 'Singtel',
                        'type': 'Telecommunications carrier'},
                       {'customers_affected': "5.9 million (nation's entire "
                                              'population)',
                        'industry': 'Telecommunications',
                        'location': 'Singapore',
                        'name': 'StarHub',
                        'type': 'Telecommunications carrier'},
                       {'customers_affected': "5.9 million (nation's entire "
                                              'population)',
                        'industry': 'Telecommunications',
                        'location': 'Singapore',
                        'name': 'M1',
                        'type': 'Telecommunications carrier'},
                       {'customers_affected': "5.9 million (nation's entire "
                                              'population)',
                        'industry': 'Telecommunications',
                        'location': 'Singapore',
                        'name': 'TPG Telecom',
                        'type': 'Telecommunications carrier'}],
 'attack_vector': 'Exploiting vulnerabilities in network equipment',
 'data_breach': {'data_exfiltration': 'Prevented'},
 'description': 'Singapore has confirmed that China-linked hacking group Salt '
                'Typhoon successfully infiltrated the critical systems of its '
                'four largest telecommunications carriers Singtel, StarHub, '
                'M1, and TPG Telecom serving the nation’s entire 5.9 million '
                'population. The government disclosed the breach today, '
                "revealing that while the attackers gained 'limited access to "
                "critical systems,' they were prevented from disrupting "
                'services or stealing customer data. The incident reflects a '
                'broader pattern of state-sponsored cyberattacks targeting '
                'global telecom infrastructure, with Salt Typhoon previously '
                'linked to breaches in the U.S. and Europe. The compromise of '
                'all four major carriers underscores the strategic nature of '
                'the attack, as telecom networks underpin government '
                'communications, financial transactions, and national '
                'security.',
 'impact': {'data_compromised': 'Prevented from stealing customer data',
            'downtime': 'Prevented from disrupting services',
            'operational_impact': 'Limited access to critical systems',
            'systems_affected': 'Critical systems of telecom carriers'},
 'motivation': 'Intelligence-gathering',
 'references': [{'source': 'Mandiant'}],
 'response': {'containment_measures': 'Breach was contained'},
 'threat_actor': 'Salt Typhoon',
 'title': 'China-Backed Salt Typhoon Hackers Breach All Four Major Telecom '
          'Providers in Singapore',
 'type': 'State-sponsored cyberattack'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.