A monthly bulletin presenting insights gleaned from global cybersecurity news that impacts us.
Click on the theme to view the full article!
  • Banking and Finance 01 April 2019

    Many banking and financial institutions are at the forefront of cybersecurity best practices, deploying advanced technologies to secure their systems. Their efforts in cybersecurity may be instructive for other sectors.

    Their security posture is very necessary. The banking and finance sector remains a lucrative target for cybercriminals and other cyber actors. In 2016, the Society for Worldwide Interbank Financial Telecommunications (SWIFT), a network that thousands of banks around the world use to move money, was targeted. Attackers exploited system and process vulnerabilities in individual banks to send seemingly authentic SWIFT instructions and successfully stole about US$100 million from at least three banks (Bangladesh Central Bank, Ecuador’s Banco del Austro, and an Ukrainian bank).

  • Healthcare 01 April 2019

    Healthcare providers are going digital with patient records increasingly being stored electronically. They are also adopting medical Internet of Things (IoT) devices to improve operational efficiency and enhance patient care experience. These developments are increasing the vulnerability of the healthcare sector as a high-value target that hackers would target.

  • Media 01 March 2019

    Cyberspace has made it relatively easier for attackers to gain unauthorised access to media channels to hijack their pervasiveness, credibility, and influence for their own nefarious objectives. These may include: supporting state-level cyber and propaganda campaigns such as through the spread of fake news; falsifying and amplifying the impact of a crisis; and stealing and selling personal identities, among others. Social media’s near real-time distribution of news and other information to a mass audience makes it ideal for carrying out those activities.

  • Infocomm 01 March 2019

    The global Info-communications (Infocomm) sector has been a target of a series of cyber-attacks that have grown in scale and sophistication in recent years. Cyber attackers have targeted where it hurts - rendering Internet services unavailable and compromising the confidentiality, availability and integrity of personal data. Some high-profile attacks include; the cyberattack on UK Telecom company TalkTalk in October 2015, the Distributed Denial of Service attack (DDoS) on internet infrastructure company Dyn, which disabled access to services such as Paypal and Twitter in October 2016, and the cyber-attack on German Deutsche Telekom in November 2016.

  • Small and Medium-Sized Enterprises 01 February 2019

    In the "Singapore Cyber Landscape 2017" publication, it was reported that 2,040 website defacements were detected in Singapore, with the majority being websites of SMEs from a range of businesses such as interior design and manufacturing. Many of the cases reported to SingCERT by SMEs involved phishing, ransomware and business e-mail scams. A reason cyber criminals may attack SMEs is because they are seen as a means of getting to larger corporations, to which SMEs are suppliers.

  • Cybersecurity in Security & Emergency 01 February 2019

    Law enforcement agencies are not spared the threats of cyber-attacks, even as they strive to protect us from physical or cyber harm themselves. From ransomware and denial-of-service attacks to hoax bomb threats, these agencies are as susceptible to them as any other. But when compromised, the impact could be public disorder, the loss of highly-sensitive information such as case files on crimes and their victims, and even the loss of lives should emergency services face a Denial-of-Service attack on their hotlines.

  • Cybersecurity in High-Profile Events 01 February 2019

    High-profile events such as the DPRK-USA Singapore Summit, global conferences and sporting events like the recently concluded World Cup attract wide-ranging attention, including from the bad hats. Physical security, such as increased police patrols, barricades and identification checks, are some of the usual measures to safeguard such events. Increasingly, enhancing cybersecurity is also part of the planning for such events.

  • Government 01 February 2019

    In recent years, governments have been seen to be taking pre-emptive measures to counter threats, or responding to cyber-attacks that may set a precedence for others.

    In terms of pre-emptive measures to fight cyber-attacks, governments in Thailand, China and Russia amended or introduced legislation on information security. In China, the new law by the administration under President Xi Jinping is the latest effort that reflects the country’s increasing focus on raising its cybersecurity capabilities, including deterrence. Notably, President Xi himself heads the Central Leading Group for Internet Security and Informatization, the central government’s apex committee responsible for Internet-related issues including cybersecurity

  • Aviation 01 February 2019

    Can an aeroplane be hacked? Cybersecurity companies are showing that there are vulnerabilities that can be exploited. IOActive, a Seattle-based cybersecurity firm released a report in December 2016 that claimed that the Panasonic Avionics in-flight entertainment system was hackable, and credit card information could be accessed. Panasonic Avionics has refuted the claims. Prior to that, the founder of another info-security company One World Labs had claimed he could commandeer a plane through its inflight entertainment service. United Airlines has banned him from ever flying with them since.