Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore

Alerts & Advisories

Provides alerts and advisories on emerging cyber threats, vulnerabilities, and preventive measures to help individuals and organisations stay secure online.

1152 articles

3 June 2026

Security Bulletin 3 Jun 2026 [PDF, 2.2 MB]

Bulletins

31 May 2026

Critical Vulnerability in Palo Alto Networks Products

Palo Alto Networks has identified a critical vulnerability affecting the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS software and Prisma Access that allows attackers to establish unauthorised VPN connections. Users and administrators of affected product versions are advised to update to the latest versions immediately.

Alerts

29 May 2026

High-Severity Vulnerability in Microsoft Sharepoint

Microsoft has released security updates addressing a remote code execution vulnerability in SharePoint. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

29 May 2026

Critical Vulnerability in Langflow

A critical vulnerability in Langflow discovered in December 2025 is now under active exploitation. Users and administrators are advised to update to the latest version immediately.

Alerts

28 May 2026

Advisory on Cybersecurity Risks of OpenClaw

Autonomous AI agents, such as OpenClaw, offer real productivity benefits but introduce serious cybersecurity risks. This advisory draws attention to IMDA's Case Study on the Responsible Deployment of OpenClaw, and highlights the key cybersecurity risks.

Advisory

27 May 2026

Security Bulletin 27 May 2026 [PDF, 668 KB]

Bulletins

26 May 2026

Critical Vulnerability in LiteSpeed User-End cPanel Plugin

LiteSpeed Technologies has released security updates addressing an Incorrect Privilege Assignment vulnerability in the LiteSpeed User-End cPanel Plugin. Users and administrators of affected versions are advised to update to the latest version immediately.

Alerts

26 May 2026

Critical Vulnerability in Drupal Core

Drupal security team has released a security update to address a critical Structured Query Language (SQL) Injection vulnerability in Drupal core affecting multiple supported branches. Users and administrators of affected versions are advised to update to the latest patched versions immediately.

Alerts

26 May 2026

Multiple Critical Vulnerabilities in Ubiquiti UniFi OS

Ubiquiti has released security updates to address multiple critical vulnerabilities in UniFi OS. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

22 May 2026

Multiple Vulnerabilities in Cisco Products

Cisco has released security updates addressing multiple vulnerabilities affecting multiple Cisco products. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts