BELFOR > BELFOR Singapore > Resource Hub > News > Final Report of Cyber Incident

Final Report of Cyber Incident

On 16th April 2026, a security incident affecting the IT infrastructure of the BELFOR entities in Asia was identified.

The group responsible for the security incident could be identified as the INC Ransom group announced the theft on its dark web blog, but there is no confirmed evidence that the exfiltrated data has been disseminated or misused.

The leaked dataset contains personally identifiable information (PII) and business-related information like damage documentation, site photographs, etc.

As soon as the compromise was confirmed, the affected systems were permanently shut down on the same day of the discovery. Please be assured that the affected systems will not be returned to service.

The entire IT environment was rebuilt from scratch without using any compromised components. The new environment is being managed by BELFOR Europe GmbH, the parent company of BELFOR (Asia) Pte Ltd, which is ISO/IEC 27001 certified.

In the days following the cyber incident, BELFOR engaged and has been supported by external cybersecurity experts as well as external legal advisers on data protection and regulatory reporting, to uncover any vulnerabilities and to ensure that BELFOR complies with all applicable regulatory requirements.

Thanks to the rebuilding of the IT environment, our business operations for ongoing and new projects have continued. BELFOR employees in Asia remain reachable via their existing email addresses.

July 6, 2026