Tae Woong Kang

National cyber marks may soon be required for sensitive contracts Singapore’s monetary authority (MAS) and cyber security agency (CSA) have signalled a regulatory shift that could soon require vendors to obtain national cybersecurity certifications Cyber Essentials or Cyber Trust marks before they can secure licences or participate in government tenders involving access to sensitive systems or data. This proactive stance comes in response to growing concerns about third-party supply chain risks. 📈 Business impact for across cybersecurity ecosystem - Mandatory compliance likely: Certification may become a prerequisite for vendors bidding for public contracts or engaging in regulated sectors such as finance. - Increased assurance standards: Businesses will need to align with the frameworks outlined under the Cyber Essentials (for SMEs) or Cyber Trust (for high-risk operations) marks both now expanded to include cloud, AI, and OT security. - Readiness assessment urged: Organisations handling sensitive data or seeking partnerships with public or regulated entities in Singapore should begin evaluating their current cybersecurity posture against certification requirements. - Competitive advantage: Early adopters may gain a distinct edge in procurement and licensing by signalling stronger cybersecurity governance and trustworthiness. - Government support available: CSA’s co-funded CISO-as-a-service programme supports eligible SMEs working towards cyber essentials compliance. At Eurofins Electrical & Electronics, we provide cybersecurity testing, standards compliance assessments, and technical validation services to help businesses prepare for mandatory certifications. Whether aligning with national frameworks or international benchmarks, our expertise supports secure, future-ready digital operations. 🔗 Get ahead of cybersecurity regulations and build digital trust from the ground up. Explore our cybersecurity and regulatory assessment services: https://lnkd.in/gG9_VnMm #CyberSecurityCertification #SupplyChainSecurity #CyberEssentials #CyberTrust #MAS #CSA #ThirdPartyRisk #DigitalTrust #RegulatoryCompliance #Eurofins #TestingForLife

1

Tuesday's reading - Cybersecurity Report 2024 by Hong Kong’s Cyber Security and Technology Crime Bureau (CSTCB) — a landmark publication that offers a thorough analysis of the evolving cyber threat landscape both globally and within Hong Kong. As cyber threats grow in scale and sophistication, this report shared the key challenges facing governments, businesses, and individuals in today’s digital age. It explores emerging risks such as AI-powered attacks, supply chain vulnerabilities, and deepfake scams. It also highlighted the critical importance of protecting our digital infrastructure and personal data. Beyond identifying threats, the report emphasizes proactive defense strategies, legislative advancements, and the vital role of collaboration between law enforcement, industry, and the public. It presents actionable insights to help organisations strengthen their cybersecurity posture and cultivate resilience against an ever-changing array of cyber risks. For anyone invested in understanding the future of cybersecurity and building safer digital ecosystems, this report is an essential resource that underscores the collective effort required to safeguard our interconnected world. https://lnkd.in/g-yKHY3P #Cybersecurity #CSTCB #HongKong #DigitalSecurity #CyberThreats #AI #CyberResilience

43

2 Comments

Our Threat Research team recently added 1.4K+ indicators of compromise associated with Oriental Gudgeon. This phishing kit, recently covered by the urlscan.io research team (https://lnkd.in/evj-KuUY), targets Japanese companies with a focus on the financial services industry. Threat Page: https://lnkd.in/eetiNqZA Explore Indicators: https://lnkd.in/eUFy-fdY

8

Marina Bay Sands has been fined S$315,000 by PDPC over a data breach two years ago that affected more than 665,000 customers. CNA Personal Data Protection Commission (PDPC) Cyber Security Agency of Singapore (CSA) #cybersecurity #cyberattack #databreach #singapore

19

3 Comments

🚨 Emerging Data-Breach Alert – DOAE Thailand 🚨 I wanted to bring attention to a significant incident: the Department of Agricultural Extension (DOAE), which operates under the Ministry of Agriculture and Cooperatives in Thailand, has reportedly suffered a data breach. A threat actor claims to have accessed and is offering for sale ~5.4 million records, including ID card numbers, full names, nationality, mobile numbers, email addresses, dates of birth, main/minor career details. Why this matters: • The scale of exposed PII (personally identifiable information) means the potential for identity-theft, phishing or targeted social-engineering attacks is amplified. • This is an agricultural-sector government body—not a tech giant—highlighting that no sector is immune. • For organisations working with public/consumer-data, the event underscores the need for robust data-protection strategies and incident-response readiness. Key takeaways for us in cybersecurity / risk / compliance roles: 1. Review how our data-flows are designed: Who holds PII, how it's stored, accessed, encrypted? 2. Ensure monitoring & alerting is configured for unusual access or exfiltration patterns. 3. Test incident-response plans: notification to affected subjects, regulatory obligations, forensic investigation. 4. Raise awareness: even organisations perceived as “lower-risk” (agriculture, government services) must treat data as high-value asset. Questions worth asking your teams / leadership: • Do we have a clear inventory of what personal data we process, where it resides, and who can access it? • Is our supplier- / third-party-risk process up-to-date? (Because breaches often stem via vendors.) • Have we measured the effectiveness of our data-protection controls (encryption at rest/in transit, access logging, MFA, least-privilege)? • Would our communications be ready—both internally and externally—if we discovered we were the next victim? 📌 For those working in email-threat detection, phishing, BEC, SEGs etc.: a breach like this often triggers a ripple effect of phishing campaigns targeting the exposed individuals. Now might be a good time to review email-filtering rules, simulated-phishing exercises, and DMARC/SPF/DKIM posture. If you’d like to discuss how this kind of breach connects into broader cyber-risk strategies—or how to translate it into actionable steps for your org—feel free to reach out. #CyberSecurity #DataBreach #InformationSecurity #RiskManagement #GovernmentIT #Phishing #EmailSecurity

6

🚨 Want to know how a seemingly simple WhatsApp message can lead to a sophisticated intrusion? Our latest investigation uncovers a detailed attack chain linked to Operation DreamJob, involving advanced malware variants like BURNBOOK and MISTPEN, used by North Korean threat actors. This in-depth report reveals their methods and techniques. It’s a must-read for anyone serious about cyber threat intelligence! 🔎 Want to see the full story and learn how to defend against these sophisticated threats? 👉 Read the full blog here: https://ow.ly/V4mr50Xug1l #CERT #ThreatIntelligence #OperationDreamJob #DPRK #Cyberdefense

47

When it comes to IT Audit, is Singapore ready to switch from attestation approach to evidence approach? Do we have enough IT auditors with deep tech skills that can read system architecture and ask for the right evidence, and from which system the logs or configurations to pull from? Think this is an area where current auditors who want to future proof their career can dive right into.

3

OWASP AppSec Days Singapore Chapter, together with Practical DevSecOps, is bringing a free Mini API Security Hands-On Workshop 🚀 This is a 90-minute online, hands-on session focused purely on real world API security. No slides. No theory heavy talks. Just live demos, whiteboard explanations, and guided exercises in a controlled lab environment. 📅 29 January 2026 ⏰ 8:00 PM SGT onwards 🌐 Online 🔗 Access details will be shared with registered participants What you will learn: ✅ Hands-on API security from both offensive and defensive perspectives ✅ API authentication mechanisms such as HTTP Basic, API Keys, OAuth, and JWT ✅ Enumeration and exploitation techniques using tools like FFUF ✅ Exploiting critical API vulnerabilities including insecure deserialization and path traversal ✅ Defensive techniques using automated scanning tools and controls like rate limiting All exercises are conducted in a browser-based lab environment provided by Practical DevSecOps. It works smoothly on laptops, notebooks, and even iPads, with no additional software required. If you build, test, or secure APIs and want practical skills you can apply immediately, this workshop is for you. 🎟️ Free registration & Spots are limited. 👉 Register here: https://lnkd.in/gdTzAtCa #APISecurity #AppSec #DevSecOps #CyberSecurity #OWASP

3

𝗕𝘂𝗶𝗹𝗱𝗶𝗻𝗴 𝗮 𝗥𝗲𝘀𝗶𝗹𝗶𝗲𝗻𝘁 𝗗𝗶𝗴𝗶𝘁𝗮𝗹 𝗦𝗶𝗻𝗴𝗮𝗽𝗼𝗿𝗲 Yesterday at the GTACS Conference organised by ISACA, we had the privilege of hearing from Mr Ong Kok Wee, Assistant Chief Executive of the Policy and Corporate Development (P&CD) cluster at the Cyber Security Agency (CSA), in his insightful keynote speech on bolstering cyber resilience in Singapore. As Singapore strides towards becoming a digitally trusted economy, with the digital sector contributing nearly 18% to the national economy and 95% digital adoption among firms in 2023, the importance of robust cybersecurity cannot be overstated. Mr Ong highlighted how this rapid digitalisation, especially with widespread cloud usage, introduces complex risks. Common misconfigurations in the cloud, like public storage buckets, are often culprits in data breaches. A significant focus was placed on the expanding digital threat surface due to Artificial Intelligence (AI). Mr Ong outlined critical AI-related risks:  • Agentic AI: The elevated security stakes as AI takes on more autonomous roles in critical workflows.  • Shadow AI: The unwitting exposure of confidential data through unsanctioned AI tool usage by employees.  • Prompt Injection: A novel attack vector that manipulates AI models into revealing sensitive information, with defences still maturing.  • AI-driven Cybercrime: The alarming prospect of AI "turbocharging" cybercrime, from automated malware to phishing campaigns, with estimates suggesting 80% of ransomware attacks could be AI-driven. To counter these evolving threats, Mr Ong emphasised matching digital ambition with digital resilience. The CSA's SG CyberSafe programme and national cybersecurity standards are key enablers. Crucially, the CyberEssentials and CyberTrust certification marks will be expanded in April 2025 to cover cloud security, AI security, and operational technology (OT) security, providing vital guidance on secure AI utilisation, including visibility into third-party AI tools. Recognising implementation hurdles, CSA also offers a CISO-as-a-service scheme for SMEs, providing consultants and up to 70% funding to help them achieve the Cyber Essentials mark. Mr Ong's closing message resonated deeply: cybersecurity must continuously evolve. Organisations must proactively align their security measures with their technology adoption to fully reap the benefits of digitalisation without compromising their security posture. A vital call to action for all of us navigating this dynamic digital future. #Cybersecurity #DigitalResilience #AITrends #CyberThreats

25

1 Comment

Singapore's Cyber Security Agency issued an alert this week for a critical vulnerability in IBM API Connect that organizations should be aware of. CVE-2025-13915 has a CVSS score of 9.8 and involves an authentication bypass flaw. In practical terms, this means attackers could potentially gain unauthorized access without needing valid credentials. IBM released patches on January 2nd. If your organization relies on API Connect for managing APIs, this should be prioritized in your patching schedule. Authentication bypass vulnerabilities are particularly concerning because they eliminate one of the most fundamental security controls. The fixes are available, so there's no reason to delay. #CyberSecurity #InfoSec #VulnerabilityManagement #APISecurity

5