Cyber Incident Victim: Koh Brothers Eco Engineering Limited

Koh Brothers Eco Engineering Limited experienced a cybersecurity incident affecting certain subsidiaries, as disclosed on December 4, 2023. Unauthorized actors gained access to and encrypted servers within these subsidiaries, prompting an immediate containment response. Upon detecting the breach, the Group disconnected compromised servers from its network to prevent further unauthorized access. Investigations commenced to determine the scope and origin of the attack, with preliminary findings indicating the incident had been contained. The Company engaged external incident response specialists and legal counsel to manage forensic analysis and regulatory compliance. Despite these measures, the Group acknowledged it could not yet assess the operational or financial impact of the attack. Business operations remained functional across the organization during the investigation phase, with no reported service disruptions.

The Company initiated system restoration efforts using advanced remediation tools while conducting a comprehensive review of its IT infrastructure. This review aimed to identify vulnerabilities exploited during the attack and evaluate the robustness of existing security protocols. Koh Brothers Eco Engineering emphasized its commitment to strengthening its cybersecurity framework against increasingly sophisticated threats but did not disclose specific technical details about the attack vector or data compromise. Shareholders received advisories to exercise caution regarding securities transactions pending further updates. The Catalist-listed entity committed to disclosing material developments as investigations progressed, though no timeline for resolution or full system recovery was provided. Ongoing monitoring continued to ensure no residual threats persisted within the network environment.