Keeping our cyberspace safe & secure
CSA's core mission is to keep Singapore's cyberspace safe and secure, to underpin our National Security, power a Digital Economy, and protect our Digital Way of Life.
Alerts & Advisories
Critical Vulnerabilities in Cisco ISE and Webex Services
Cisco has released security updates to address multiple security vulnerabilities in two of its products: Identity Services Engine (ISE) and Webex Services. There are no indications that these vulnerabilities are being exploited in the wild when this alert is reported. However,successful exploitation of these vulnerabilities may result in gaining root access and remote code execution. Users and administrators of affected products are advised to update to the latest versions immediately.
Critical Vulnerability in Nginx UI
Nginx-UI has released a security advisory addressing a vulnerability affecting Nginx-UI with Model Context Protocol (MCP) support.This vulnerability is being exploited in the wild. Successful exploitation of this vulnerability can allow any network attacker to invoke all MCP tools without authentication and lead to a complete NGINX service takeover. Users and administrators of affected products are advised to update to the latest version immediately.
Critical Vulnerabilities in Fortinet Product
Fortinet has released software updates addressing vulnerabilities in FortiSandbox.Users and administrators of affected products are advised to update to the latest versions immediately.
News & Events
Be Cyber Safe Workshop for Seniors at Fernvale Community Club
This workshop is organised by CSA and Jalan Kayu Active Ageing Committee, in partnership with Central Provident Fund Board, National Library Board and United Overseas Bank.
National Simulated Scams Exercise
The NSSE is an opt-in exercise designed to help participants learn how scams work and steps they can take to protect themselves through experiential learning. In a safe and controlled environment, participants will be exposed to actual scam tactics, preparing them to better understand how scammers operate and protect themselves in real life.
Closing Note to the Consultation on the Licensing Framework for Cybersecurity Service Providers
CSA concludes public consultation on cybersecurity licensing framework updates. Key changes include mandatory certification requirements, extended 5-year licence validity, and streamlined notification processes. Implementation timeline provides adequate transition period for service providers to comply with new standards.
Resources
Report a Cybersecurity Incident
SingCERT encourages reporting incidents as it enables us to understand the scope and nature of cyber incidents in Singapore.
Subscribe for Updates
Get timely information about security issues, vulnerabilities, exploits and high-impact cybersecurity activity affecting Singapore from SingCERT.
