Cyber Security Does Not Follow From Cyber Awareness

A nationwide study by the Cyber Security Agency of Singapore (CSA) has found that while nearly half of its respondents had experienced a cyber security incident and that awareness of its dangers are high, some are just complacent. In the release of the third edition of the annual Cybersecurity Public Awareness Survey the CSA said 48 per cent of the 1,105 respondents had experienced at least one cyber incident in 2018.

The agency added that more than a third of the respondents reported encountering advertisement pop-ups online, which can be a sign of malicious software infection. This was the most commonly cited security incident, followed by having their data leaked by a company, which about 15 per cent of respondents experienced.

Other types of cyber incidents included receiving a phishing e-mail, being infected by ransomware and having their computer or device controlled by hackers illegally. The latest survey was the first time CSA measured the types and frequency of cyber-security incidents its respondents encountered.

When compared with results released last year (2018), there have been some improvements. The survey found that in 2018, 36 per cent of Singaporeans enabled Two-Factor Authentication (2FA) for their online accounts. This is 10 percentage points more than in 2017. 2FA provides an additional layer of security by requiring users to key in a code that is either sent to their mobile phones or generated by a token.

The CSA said the adoption of some cyber-security practices "needs to be improved", highlighting how there have been decreases in their take-up rate. The survey found that there has been a decrease in the proportion of respondents who had updated the software of their mobile devices.Mobile software manufacturers usually roll out stronger cyber defences in these updates.

According to CSA, 80 per cent of the respondents updated their software in 2018, down from 83 per cent in 2017.
Additionally, out of those who installed software updates or updated their phones , only half did so immediately when the update became available, compared to 55 per cent in 2017.

The proportion of respondents who had installed security applications in their mobile devices fell as well, from 53 per cent in 2017 to 45 per cent in 2018.

CSA pointed out that this was despite the fact that there was a larger proportion of respondents who acknowledged the risks of not installing security applications and knowing which ones to use and download.The majority of respondents, at least seven out of ten, showed high levels of concerns about a variety of cyber security incidents, like having their computer controlled by hackers illegally, having their information stolen or falling victim to an online scam or fraud.

At the same time, less than half of all respondents felt like they would be hit with such a cyber security incident. CSA's chief executive David Koh pointed this out, adding: "The survey shows that while Singaporeans are concerned about cyber threats and agree that they have a role to play, most believe that they are not the target of cyber criminals.

"Cyber threats are part and parcel of the digital age, and cyber-attacks will only increase. No one is immune....We need to improve our cyber hygiene so that we do not lose our hard-earned money and our precious data to cyber criminals."

Straits Times:            CSA Singapore:     Image: Marco Verch

You Might Also Read: 

Has The US Become Complacent About Resisting Cyber Attacks?:

GDPR Survey Shows 80% Non-Compliance:

 

« AI Is Changing The Cyber Security Landscape
Who’s Afraid Of Huawei? »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

PakCERT

PakCERT

PakCERT is the national Computer Emergency Response Team for Pakistan.

Alliance for Cyber Security (ACS)

Alliance for Cyber Security (ACS)

An alliance of all major players in the field of cyber security in Germany with a mission to strengthen Germany’s resistance to cyber-attacks.

HelseCERT

HelseCERT

HelseCERT is the health and care sector's national information security center for Norway.

Cyscale

Cyscale

Cyscale automates the contextual analysis of cloud misconfigurations, vulnerabilities, access, and data, to provide an accurate and actionable assessment of risk.

ENAC

ENAC

ENAC is the national accreditation body for Spain. The directory of members provides details of organisations offering certification services for ISO 27001.

Lithuanian National Accreditation Bureau

Lithuanian National Accreditation Bureau

Lithuanian National Accreditation Bureau is the national accreditation body for Lithuania. The directory of members provides details of organisations offering certification services for ISO 27001.

Bitfury Group

Bitfury Group

Bitfury Group is the largest full-service blockchain technology company in the world.

Heidrick & Struggles International

Heidrick & Struggles International

Heidrick & Struggles is a premier provider of leadership consulting and senior-level executive search services for roles including Information & Technology Officers and Cybersecurity.

vCISO Services

vCISO Services

vCISO Services is a small, specialized, veteran-owned firm focused on the needs of SMBs only.

PhishFirewall

PhishFirewall

PhishFirewall is an advanced AI-driven CyberSecurity Awareness Education, Threat Emulation, and Human Security Analytics Platform.

Execweb

Execweb

Execweb are a cybersecurity executive network, comprised of 400+ security practitioners who work at Fortune 500 and SME companies.

The CyberWire

The CyberWire

The CyberWire gets people up to speed on cyber quickly and keeps them a step ahead in a continually changing industry.

Whitaker Brothers

Whitaker Brothers

Whitaker Brothers data destruction equipment can be found in 115 countries and every single continent in the world, from major military organizations to small offices.

TachTech

TachTech

TachTech is passionate about trust, security and privacy in the digital world. We create tailored security and compliance solutions to improve your business.

Benchmark Executive Search

Benchmark Executive Search

Benchmark specializes in finding elite talent for startup, emerging-growth and mid-cap companies offering game-changing technologies or innovative services to the federal and commercial markets.

Gathid

Gathid

Gathid is a unique and versatile identity governance platform providing organizations with the ability to model, explore, audit, and track complex access-related scenarios.