Crisis Management for a Conflict with North Korea

三中国男持假工作准证来新 为黑客组织入侵网站

8World News | Local Language | News | Nov. 7, 2025 | Cyber Attacks and Data Loss

Three men from Henan, China—Yan Peijian, Huang Qin Zheng, and Liu Yuqi—entered Singapore using fake work permits facilitated by a Vanuatu national, Xu Liangbiao, to hack gambling websites and a Chinese SMS service company to obtain user data. The men lived in a Mount Sinai bungalow, with daily needs and luxury accommodations arranged by Xu's subordinate. They initially arrived in Singapore in 2022 with forged documents and later formally worked for Xu, engaging in hacking activities until their arrest in September 2024.

The three hackers divided responsibilities based on their IT specializations, targeting vulnerabilities in websites and systems to steal data and implant malware. They hacked gambling platforms, a Chinese SMS service company Yi Mei, and a Philippine power company, downloading customer and SMS volume data. Their equipment contained various hacking tools and malware, including source codes for remote access trojans and software such as Metasploit and PlugX. Police noted the group avoided attacking local or government websites, aware of the illegal nature of their actions. They admitted to falsifying employment records to authorities.

The prosecution stated that while the men did not directly attack Singapore, their use of the country as a cybercrime base harmed its international reputation. The three were described as the employer’s well-funded and organized technical backbone. Defense lawyers countered that the defendants had limited skills and were largely unsuccessful in breaching targeted systems, characterizing their attempts as failed hacking efforts. Sentences were handed down on November 5, 2025, with Yan and Huang receiving 28 months and one week, and Liu receiving 28 months and four weeks in prison.