Cyber Security Agency of Singapore (CSA)

CSA’s Singapore Cyber Emergency Response Team (SingCERT) has received several reports of scammers impersonating SingCERT officers. The scammers attempted to scare members of the public by claiming that their mobile numbers were used for illegal activities overseas. Members of the public are advised to not follow any of the instructions given by the caller or provide any information. We urge you to report scam calls or requests to the police. This information may be used to aid in ongoing investigations or uncover unreported crimes. You can provide the information online at https://lnkd.in/g-csAyuZ and www.police.gov.sg/iwitness. If you encounter scam calls impersonating CSA/SingCERT officers, you can report the incident at https://lnkd.in/gEV23ZFS.

Singapore remains strongly committed to inclusive multilateral cooperation, towards a safe, secure, interoperable and resilient cyberspace for all. At the tenth Substantive Session of the United Nations Open-ended Working Group (OEWG) on Security of and in the use of ICTs, the Singapore national delegation, led by Mr Sithu raj Ponraj (Director of CSA’s International Cyber Policy Office), underscored the need to work towards key priorities, including: • Ensuring accessibility of technologies like Artificial Intelligence (AI), while mitigating potential security risks, • Building Operational Technology (OT) resilience as part of critical infrastructure protection, and • Supporting CERT-related capacity building and cooperation. Mr Sithu raj Ponraj also participated in the panel “The Road from 2015-2025: 10 years of the UN framework on responsible state behaviour in cyberspace”, co-organised by the Royal United Services Institute (RUSI), United Kingdom and EU Cyber Direct – EU Cyber Diplomacy Initiative. He shared the ASEAN perspective on the importance of understanding the operational, policy, legal, technical and diplomatic aspects of the 11 UN voluntary norms of responsible State behaviour and reiterated Singapore’s commitment to the framework – through cooperating with Malaysia and other ASEAN Member States to finalise the ASEAN Norms Implementation Checklist and developing a new capacity building workshop series to support the norms discussion in ASEAN. Singapore looks forward to participating actively in future discussions of the OEWG as it approaches its final session in July 2025.

🔹 Level Up Your CyberXperience Today! 🔹 💻 Calling all tertiary students: Dive into the world of cybersecurity with CSA! ✅ Explore CSA career opportunities ✅ Network with cybersecurity experts ✅ Tackle cyber challenges hands-on No prior experience needed. Join us to gain insights into the cyber world! 🚀   📅 21 March 2025 (Friday), 9AM – 6PM 📍 Ministry of National Development Complex, Tower Block, MXR L2 5 Maxwell Road, Singapore 069110 🔗 Sign Up: https://lnkd.in/gtW3gZ6U #cyberxperience

CSA has released a new advisory for software developers, aimed at reducing the cybersecurity risks from the integration of Open-Source Software and third-party dependencies during the software development process.   The advisory was developed with the OWASP® Foundation and provides guidance on a sustainable and automated approach to vulnerability management through Software Bill of Materials (SBOM) and real-time vulnerability monitoring.   To read the 𝗔𝗱𝘃𝗶𝘀𝗼𝗿𝘆 𝗼𝗻 𝗦𝗼𝗳𝘁𝘄𝗮𝗿𝗲 𝗕𝗶𝗹𝗹 𝗼𝗳 𝗠𝗮𝘁𝗲𝗿𝗶𝗮𝗹𝘀 𝗮𝗻𝗱 𝗥𝗲𝗮𝗹-𝘁𝗶𝗺𝗲 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗠𝗼𝗻𝗶𝘁𝗼𝗿𝗶𝗻𝗴 𝗳𝗼𝗿 𝗢𝗽𝗲𝗻-𝗦𝗼𝘂𝗿𝗰𝗲 𝗦𝗼𝗳𝘁𝘄𝗮𝗿𝗲 𝗮𝗻𝗱 𝗧𝗵𝗶𝗿𝗱-𝗣𝗮𝗿𝘁𝘆 𝗗𝗲𝗽𝗲𝗻𝗱𝗲𝗻𝗰𝗶𝗲𝘀, visit https://lnkd.in/gHRngmws

CSA and the UK Home Office co-organised a tabletop exercise for the Counter Ransomware Initiative (CRI), as part of ongoing efforts to foster international cooperation against ransomware attacks. Held over two time zones to account for the international reach of the exercise, more than 100 representatives from over 37 countries took part in the exercise, which focused on managing a large-scale simulated ransomware attack on the health sector. The exercise served as an opportunity for participants to gain experience in managing a cybersecurity crisis, as well as to review their incident response processes, crisis communications arrangements and cyber insurance policies. In closing, the participants also exchanged insights and best practices for responding to and recovering from ransomware attacks, and also reaffirmed a common strong stance against paying ransoms. For more information on the CRI, visit https://lnkd.in/gmyKrfzx.

🚀 Explore opportunities and be part of shaping the tech landscape 🌏💡   Sign up for the PSC (Engineering) and Smart Nation Scholarship Joint Information Session to learn more about career pathways in the Information and Communications Technology & Smart Systems (ICT & SS) sector!   📅 Saturday, 1 March 2025 🕘 9am- 12:30pm 📍 National Press Centre Ministry of Digital Development and Information Level 1, Old Hill Street Police Station, 140 Hill Street Singapore 179369   🔗 Register at: https://lnkd.in/gQ7tvUAM     This session is co-organised by Cyber Security Agency of Singapore (CSA), GovTech Singapore, IMDA, in support of Smart Nation Singapore.   #SmartNationScholarship #PSCScholarship

The Cyber Resilience Guide for Boards in Singapore was launched this week, as part of the Singapore Institute of Directors's (SID) contribution to Total Defence, providing frameworks and actionable steps to help board directors strengthen their organisations’ cyber resilience. CSA contributed to the Guide, alongside SID, ISTARI and NCS Group. The Guide complements CSA’s efforts under the SG Cyber Safe Programme to empower organisations to prioritise and invest in cybersecurity, and put in place in the necessary cybersecurity and resilience measures to raise their cyber posture. The Guidebook will be available to access from end-February. For information on CSA’s SG Cyber Safe Programme, visit www.csa.gov.sg/sgcybersafe

Mr Christopher Anthony, Director of #CSA’s Critical Information Infrastructure Division, participated in a Fireside Chat with Mr Dale Peterson at S4x25, speaking about Singapore’s OT cybersecurity journey over the years. During the discussion, he reflected on the challenges and key lessons learnt in implementing Singapore’s OT cybersecurity initiatives, highlighting the importance of fostering trust and partnership with the industry, regulators and stakeholders. He also spoke about initiatives under CSA’s updated OT Cybersecurity Masterplan 2024, and how they would shape Singapore’s OT cybersecurity landscape in the coming years. One such initiative is to establish an OT Cybersecurity Centre of Excellence (OT CoE), in collaboration with original equipment manufacturers (OEMs) and solution partners. CSA remains committed to fostering strong partnerships with global and industry leaders to stay ahead of evolving cyber threats in the OT cybersecurity field. Find out more about the OT Cybersecurity Masterplan 2024 at https://lnkd.in/dPPcTRGw

Ahmad Abdillah’s, a Systems Engineer at CSA's National Cyber Incident Response Centre (NCIRC), journey into cybersecurity began with a fascination for deconstructing software at its most granular level. At #CSA, he collaborates with experts who share his passion for reverse engineering and fortifying our nation’s critical information infrastructure against ever-evolving cyber threats. Discover how he's contributing to strengthening Singapore's cyber defences in this edition of #WorkinginCSA! https://lnkd.in/g57Rf7q4

💡 CSA has co-signed the Joint High-Level Risk Analysis on AI publication released by ANSSI - Agence nationale de la sécurité des systèmes d'information, in support of efforts to foster the secure development of AI systems. The publication provides an overview of AI-related cyber risks, as well as guidance on implementing security measures. Read the full document at https://lnkd.in/ensGD-fA This risk analysis is complementary with the documents that CSA has put out, emphasising the importance of a risk-based approach and its implications for all users, operators, developers, and policy makers. More in depth advice on controls and measures can be referenced from our documents: • 𝗚𝘂𝗶𝗱𝗲𝗹𝗶𝗻𝗲𝘀 𝗮𝗻𝗱 𝗖𝗼𝗺𝗽𝗮𝗻𝗶𝗼𝗻 𝗚𝘂𝗶𝗱𝗲 𝗼𝗻 𝗦𝗲𝗰𝘂𝗿𝗶𝗻𝗴 𝗔𝗜 𝗦𝘆𝘀𝘁𝗲𝗺𝘀: https://lnkd.in/ehJDU3C6 • 𝗦𝗲𝗰𝘂𝗿𝗶𝗻𝗴 𝗔𝗜: 𝗔 𝗖𝗼𝗹𝗹𝗲𝗰𝘁𝗶𝘃𝗲 𝗥𝗲𝘀𝗽𝗼𝗻𝘀𝗶𝗯𝗶𝗹𝗶𝘁𝘆: https://lnkd.in/gqcNZwyG