Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore

Alerts & Advisories

Provides alerts and advisories on emerging cyber threats, vulnerabilities, and preventive measures to help individuals and organisations stay secure online.

1156 articles

5 June 2026

High-Severity Vulnerability in Linux Kernel

Attackers are exploiting a 2022 vulnerability in the Linux kernel to escalate privileges and escape containerised environments to compromise underlying hosts. Patch immediately.

Alerts

5 June 2026

Critical Vulnerability in Cisco Unified Communications Manager

Cisco released security updates to fix a critical vulnerability in Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition. Attackers can gain root privileges by exploiting the vulnerabilities. Users of affected products are advised to update to the latest versions immediately.

Alerts

5 June 2026

Critical Vulnerability in Mirasvit Full Page Cache Warmer for Magento 2

Mirasvit released a security update addressing a critical vulnerability in the Full Page Cache Warmer extension for Magento 2. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

3 June 2026

Multiple Critical Vulnerabilities in Oracle Products

Oracle has released security updates to address multiple vulnerabilities across several Oracle products that could allow unauthenticated attackers to compromise and take over affected systems. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

3 June 2026

Security Bulletin 3 Jun 2026 [PDF, 2.2 MB]

Bulletins

31 May 2026

Critical Vulnerability in Palo Alto Networks Products

Palo Alto Networks has identified a critical vulnerability affecting the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS software and Prisma Access that allows attackers to establish unauthorised VPN connections. Users and administrators of affected product versions are advised to update to the latest versions immediately.

Alerts

29 May 2026

High-Severity Vulnerability in Microsoft Sharepoint

Microsoft has released security updates addressing a remote code execution vulnerability in SharePoint. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

29 May 2026

Critical Vulnerability in Langflow

A critical vulnerability in Langflow discovered in December 2025 is now under active exploitation. Users and administrators are advised to update to the latest version immediately.

Alerts

28 May 2026

Advisory on Cybersecurity Risks of OpenClaw

Autonomous AI agents, such as OpenClaw, offer real productivity benefits but introduce serious cybersecurity risks. This advisory draws attention to IMDA's Case Study on the Responsible Deployment of OpenClaw, and highlights the key cybersecurity risks.

Advisory

27 May 2026

Security Bulletin 27 May 2026 [PDF, 668 KB]

Bulletins