SEMICONDUCTOR services firm Trio-Tech has disclosed that one of its Singapore subsidiaries was hit by ransomware, with file-encrypting malware deployed on its network on 11 March. The subsidiary immediately activated response protocols, quarantining systems offline, and engaged third-party cybersecurity professionals to assist while notifying law enforcement.
Trio-Tech said the investigation is ongoing and its cyber insurance provider is supporting remediation and potential claims, as it works to determine the full scope of any affected data. The company initially said the incident did not have a material impact, but attackers published data exfiltrated from its network, prompting a reassessment of the event’s severity.
While Trio-Tech has not shared details on the threat actor, the Gunra ransomware group added Trio-Tech to its Tor-based leak site, according to SecurityWeek. The company emphasised that it is still assessing the incident and coordinating with authorities and its insurer as the investigation continues.