Cyber Incident Victim: Dialog Information Technology

On September 10, 2022, Singtel's Australian IT consulting subsidiary Dialog experienced unauthorized access to its servers, prompting immediate shutdowns of affected systems as a containment measure. Singtel publicly disclosed the incident via a statement to the Singapore stock exchange on October 10, 2022, confirming Dialog—acquired by Singtel subsidiary NCS in April 2022—had initiated forensic investigations. The breach potentially exposed data belonging to fewer than 20 clients and approximately 1,000 current and former Dialog employees. Dialog restored all servers within two business days of the initial detection, declaring full operational recovery by approximately September 12, 2022. The company engaged an unnamed leading cybersecurity specialist to conduct forensic analysis and monitor dark web activity for evidence of data misuse.

Dialog’s investigation concluded no proof existed that attackers successfully exfiltrated or downloaded company data despite the confirmed unauthorized access. Singtel emphasized Dialog’s IT infrastructure operated independently from its parent company NCS, Singtel’s core systems, and Optus—another Singtel subsidiary that suffered a separate high-profile breach disclosed weeks earlier. Singtel explicitly stated no evidence connected the Dialog incident to the Optus breach. The incident occurred amid heightened scrutiny of Singtel’s cybersecurity posture following the Optus breach, though Dialog maintained its response prioritized containment, system restoration, and third-party forensic validation. No further technical specifics regarding attack vectors, data types at risk, or identity of threat actors were disclosed in available reporting.