Singapore’s Coordinating Minister for National Security, K. Shanmugam, announced on July 18 that the country is under active attack by UNC3886, a state‑linked advanced persistent threat (APT) group believed to be sponsored by China.
The Attack
UNC3886 has reportedly infiltrated networks across several strategic sectors—including defence, technology and telecommunications—using custom malware designed to evade detection. The attackers aim to steal sensitive data and potentially disrupt essential services.
Government Response
Shanmugam warned that the threat is “serious” and could undermine national security. He urged heightened vigilance across critical infrastructure, while the Cyber Security Agency of Singapore (CSA) intensified monitoring efforts.
“Even as we speak, UNC3886 is attacking our critical infrastructure right now.”
Expert Analysis
Cyber‑security specialists note that APT groups like UNC3886 typically operate over long periods, maintaining covert presence to exfiltrate information. Their capabilities underscore the need for robust defensive measures in an increasingly interconnected world.