Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories

Alerts & Advisories

Provides alerts and advisories on emerging cyber threats, vulnerabilities, and preventive measures to help individuals and organisations stay secure online.

957 articles

6 June 2025

Critical Vulnerability in Cisco ISE

Cisco has released security updates addressing a critical vulnerability (CVE-2025-20286) in its Identity Services Engine (ISE).

Alerts

6 June 2025

High-Severity Vulnerability in Apache Tomcat CGI Servlet

The Apache Software Foundation has released security updates addressing a high-severity vulnerability (CVE-2025-46701) in its Tomcat Common Gateway Interface (CGI) Servlet.

Alerts

5 June 2025

Critical Vulnerability in Hewlett Packard Enterprise StoreOnce Software

Hewlett Packard Enterprise (HPE) has released security updates to address a critical vulnerability (CVE-2025-37093) impacting StoreOnce, its disk-based backup and deduplication solution.

Alerts

5 June 2025

Critical Vulnerability in IBM Tivoli Monitoring

IBM has released security updates to address a critical vulnerability (CVE-2025-3357) in its Tivoli Monitoring products.

Alert

4 June 2025

Active Exploitation of Zero-Day Vulnerability in Google Chrome

Google has released security updates to address a zero-day vulnerability (CVE-2025-5419) in its Chrome browser.

Alerts

4 June 2025

Security Bulletin 4 June 2025 [PDF, 593 KB]

Bulletins

2 June 2025

Ongoing Botnet Campaign Targeting ASUS Routers

There are reports of an ongoing botnet campaign targeting ASUS routers to deploy persistent Secure Shell (SSH) backdoors. Users and administrators of affected products are advised to upgrade to the latest versions as soon as possible.

Alerts

30 May 2025

Security Flaw in Microsoft's OneDrive File Picker

Security researchers have discovered a security flaw in the Microsoft OneDrive File Picker, which may allow third-party applications to gain full access to a user’s OneDrive storage, even when a user intends to upload a single file only.

Alert

29 May 2025

Securing Your Cloud Environment when using SaaS Products

SingCERT has observed reports of possible cyber threat activities targeting Commvault’s Metallic SaaS platform. As more organisations shift to the cloud, understanding the security implications of SaaS and implementing best practices is crucial.

Advisory

28 May 2025

Security Bulletin 28 May 2025 [PDF, 590 KB]

Bulletins