The Monetary Authority of Singapore (MAS) and the Cyber Security Agency of Singapore (CSA) issued a joint media release on a ransomware attack reported by Toppan Next Tech to the Personal Data Protection Commission on the evening of 6 April 2025. The incident resulted in the threat actor extracting customer information belonging to DBS Bank and Bank of China Limited, Singapore branch, while customer log-in information was not compromised. CSA is supporting Toppan Next Tech’s investigation and advising on containment measures. MAS is engaging the affected banks on risk-mitigating actions and customer follow-up, with impacted accounts placed under enhanced monitoring and affected customers being contacted as a priority. The release also points to a CSA advisory on ransomware prevention and mitigation measures, noting the increasing frequency and sophistication of ransomware threats.
Monetary Authority of Singapore 2025-04-07
Monetary Authority of Singapore and Cyber Security Agency of Singapore confirm ransomware attack on Toppan Next Tech with DBS and Bank of China customer data extracted
The Monetary Authority of Singapore and the Cyber Security Agency of Singapore announced a ransomware attack on Toppan Next Tech, affecting customer data from DBS Bank and Bank of China Limited, Singapore branch. While customer log-in information was not compromised, MAS is working with the banks on risk mitigation and customer communication. The CSA is assisting with the investigation and issued an advisory on ransomware prevention and mitigation.