Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts

Alerts

Timely information about security issues, vulnerabilities, and exploits.

603 articles

11 July 2025

Critical Vulnerabilities in Multiple SAP Products

SAP has released security updates addressing multiple critical vulnerabilities in SAP Supplier Relationship Management (Live Auction Cockpit) and SAP S/4HANA / SAP Supply Chain Management (Characteristic Propagation).

Alerts

10 July 2025

Critical Vulnerability in FortiWeb

Fortinet has released security updates to address a critical vulnerability affecting their FortiWeb products.

Alerts

10 July 2025

Ongoing ClickFix Campaign

There have been reports of threat actors using a social engineering technique known as ClickFix to trick potential victims into executing malicious commands.

Alerts

Annex A: Example of a ClickFix Campaign Pop-up Message

9 July 2025

July 2025 Monthly Patch

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

Monthly Patch

4 July 2025

Ongoing Campaign by SCATTERED SPIDER

SCATTERED SPIDER is a financially-motivated eCrime adversary, targeting the insurance and retail industries. As of June 2025, the group has expanded its operations to the aviation sector.

Alerts

1 July 2025

Active Exploitation of Zero-Day Vulnerability in Google Chrome

Google has released security updates to address a zero-day vulnerability in its Chrome browser. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

30 June 2025

Active Exploitation of Critical Vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway

Citrix has released security updates addressing multiple critical vulnerabilities in their NetScaler ADC and NetScaler Gateway. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

30 June 2025

High-Severity Vulnerability in Notepad++

Notepad++ has released security updates addressing a vulnerability affecting their product. Users and administrators of affected products are advised to update to the latest version.

Alerts

26 June 2025

Critical Vulnerabilities in Cisco Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC)

Cisco has released security updates addressing multiple critical vulnerabilities in their ISE and ISE-PIC. Users and administrators of affected products are advised to update to the latest versions.

Alerts

24 June 2025

Multiple Vulnerabilities in Advantech Products

Advantech has released security updates and mitigation measures addressing multiple vulnerabilities in their products. Users and administrators of affected products are encouraged to update and implement the recommended mitigation measures.

Alerts