Safe App Standard 2.0

SAS 2.0 aims to strengthen the overall security posture of mobile apps deployed in Singapore, and better safeguard app transactions and user data.

Find out more

Securing AI Systems

CSA has developed Guidelines on Securing AI Systems to help system owners secure AI throughout its lifecycle. These guidelines will help to protect AI systems against classical cybersecurity risks such as supply chain attacks, and novel risks such as Adversarial Machine Learning.

Find out more

Singapore's OT Cybersecurity Masterplan 2024

The updated Masterplan 2024 reflects the evolving maturity of the OT ecosystem and the dynamic nature of cyber threats targeting OT systems in the wake of geopolitical and technological shifts.

Find out more

Beware of Scammers Impersonating CSA and the SPF

Members of the public are advised to stay vigilant and not follow any instructions given by these scammers.

Internet Hygiene Portal

Check the cyber health of your website or email connection.

Learn more

INFORMATION FOR ...

Alerts & Advisories

Alerts

Scammers Impersonating SingCERT Officers

07 August 2024

Members of public are advised to stay vigilant and not follow any instructions given by these scammers.

/images/default-source/alert-and-advisory/singcert_alert.webp

Alerts

Critical Vulnerability in FortiOS and FortiProxy

16 January 2025

Fortinet has released security updates addressing a critical authentication bypass vulnerability (CVE-2024-55591) affecting their FortiOS and FortiProxy products.

Alerts

January 2025 Monthly Patch

15 January 2025

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

/images/default-source/alert-and-advisory/singcert_monthly.webp

Bulletins

Security Bulletin 15 Jan 2025

15 January 2025

SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.

/images/default-source/alert-and-advisory/singcert_bulletin.webp

Alerts

Ongoing Mirai Botnet Campaign Targeting Industrial Routers

10 January 2025

There are reports of an ongoing Mirai-based botnet campaign targeting security flaws in industrial routers and smart home devices by leveraging zero-day exploits

/images/default-source/alert-and-advisory/csa_website_contentmigration_images_singcert_alert.jpg

Alerts

Active Exploitation of Critical Zero-Day Vulnerability in Ivanti Connect Secure

10 January 2025

Ivanti has released updates addressing a critical zero-day vulnerability (CVE-2025-0282) in the Ivanti Connect Secure product. This vulnerability is reportedly being actively exploited.

Bulletins

Security Bulletin 8 Jan 2025

08 January 2025

SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.

Bulletins

Security Bulletin 2 Jan 2025

02 January 2025

SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.

Alerts

Vulnerabilities in BeyondTrust Products

31 December 2024

BeyondTrust has released security updates addressing vulnerabilities (CVE-2024-12356 and CVE-2024-12686) in their Remote Support (RS) and Privileged Remote Access (PRA) products. CVE-2024-12356 has a Common Vulnerability Scoring System (CVSSv3) score of 9.8 out of 10. Both vulnerabilities have reportedly been exploited in the wild.

Alerts

Ongoing Campaign Targeting Chrome Browser Extensions

30 December 2024

There are reports of an ongoing campaign to steal sensitive information from users of Chrome Browser Extensions. While there are no reports observed locally, users of affected extensions are advised to uninstall the affected extensions, reset account passwords, clear browser data and reset browser settings to their original defaults before installing a safe version of the extensions (if available).

View all

News & Events

Gosafeonline

Recommended Security Apps List

20 January 2025

To help users select an AV app, CSA has put together a list of recommended AV apps...

Press Releases

CSA Releases New List of Recommended Security Apps to Boost Mobile Device Protection

20 January 2025

SG Cyber Safe Students

Be Cyber Safe: An Interactive Guide (2025 edition)

16 January 2025

Careers

#WorkinginCSA: Securing Singapore’s Mobile Ecosystem for a Safer Digital Future

28 November 2024

Kang Sing is a Consultant in CSA’s Cybersecurity Programme Centre (CSPC) and is part of the mobile security team. She plays a key role in testing and evaluating solutions to improve the cybersecurity ecosystem in Singapore. Outside of work, she enjoys researching and caring for her plants and eagerly anticipates the day they bloom.

/images/default-source/careers/workingincsa---kang-sing.jpeg

Events

Advanced Youth Cyber Exploration Programme

26 November 2024

Press Releases

CSA Launches the Cybersecurity Education and Learning Guidebook

19 November 2024

Publications

Cybersecurity Education and Learning Guidebook

19 November 2024

Press Releases

CyberSG Talent, Innovation and Growth (TIG) Collaboration Centre launched the Cybersecurity Industry Call for Innovation (CyberCall) 2024 November edition

11 November 2024

Press Releases

Emerging Tech Grant will Support Innovation Efforts to Boost Local 5G Network Security

11 November 2024

Events

Cybersecurity Innovation Day 2024

11 November 2024

View all

Our Programmes

SG Cyber Safe Programme

Cybersecurity Health Check for Organisations

Certification and Labelling Schemes

Cybersecurity Labelling Scheme for Medical Devices - CLS(MD)

/images/default-source/our-programmes/cls-md/cls_md-thumbnail.jpg

SG Cyber Safe Programme

SG Cyber Talent

SG Cyber Associates

Certification and Labelling Schemes

Cybersecurity Labelling Scheme (CLS)

SG Cyber Safe Students

SG Cyber Safe Students Programme

SG Cyber Safe Seniors

SG Cyber Safe Seniors Programme

View all

Report a Cybersecurity Incident

SingCERT encourages the reporting of cybersecurity incidents as it enables us to better understand the scope and nature of cyber incidents in Singapore. This will enable us to issue alerts or advisories on relevant threats, and assist a broader range of individuals and organisations.

Report Incident