Cyber Security Does Not Follow From Cyber Awareness

A nationwide study by the Cyber Security Agency of Singapore (CSA) has found that while nearly half of its respondents had experienced a cyber security incident and that awareness of its dangers are high, some are just complacent. In the release of the third edition of the annual Cybersecurity Public Awareness Survey the CSA said 48 per cent of the 1,105 respondents had experienced at least one cyber incident in 2018.

The agency added that more than a third of the respondents reported encountering advertisement pop-ups online, which can be a sign of malicious software infection. This was the most commonly cited security incident, followed by having their data leaked by a company, which about 15 per cent of respondents experienced.

Other types of cyber incidents included receiving a phishing e-mail, being infected by ransomware and having their computer or device controlled by hackers illegally. The latest survey was the first time CSA measured the types and frequency of cyber-security incidents its respondents encountered.

When compared with results released last year (2018), there have been some improvements. The survey found that in 2018, 36 per cent of Singaporeans enabled Two-Factor Authentication (2FA) for their online accounts. This is 10 percentage points more than in 2017. 2FA provides an additional layer of security by requiring users to key in a code that is either sent to their mobile phones or generated by a token.

The CSA said the adoption of some cyber-security practices "needs to be improved", highlighting how there have been decreases in their take-up rate. The survey found that there has been a decrease in the proportion of respondents who had updated the software of their mobile devices.Mobile software manufacturers usually roll out stronger cyber defences in these updates.

According to CSA, 80 per cent of the respondents updated their software in 2018, down from 83 per cent in 2017.
Additionally, out of those who installed software updates or updated their phones , only half did so immediately when the update became available, compared to 55 per cent in 2017.

The proportion of respondents who had installed security applications in their mobile devices fell as well, from 53 per cent in 2017 to 45 per cent in 2018.

CSA pointed out that this was despite the fact that there was a larger proportion of respondents who acknowledged the risks of not installing security applications and knowing which ones to use and download.The majority of respondents, at least seven out of ten, showed high levels of concerns about a variety of cyber security incidents, like having their computer controlled by hackers illegally, having their information stolen or falling victim to an online scam or fraud.

At the same time, less than half of all respondents felt like they would be hit with such a cyber security incident. CSA's chief executive David Koh pointed this out, adding: "The survey shows that while Singaporeans are concerned about cyber threats and agree that they have a role to play, most believe that they are not the target of cyber criminals.

"Cyber threats are part and parcel of the digital age, and cyber-attacks will only increase. No one is immune....We need to improve our cyber hygiene so that we do not lose our hard-earned money and our precious data to cyber criminals."

Straits Times:            CSA Singapore:     Image: Marco Verch

You Might Also Read: 

Has The US Become Complacent About Resisting Cyber Attacks?:

GDPR Survey Shows 80% Non-Compliance:

 

« AI Is Changing The Cyber Security Landscape
Who’s Afraid Of Huawei? »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

JLT Specialty

JLT Specialty

JLT Specialty is a leading specialist insurance broker. Services offered include Cyber Risks insurance.

GE Digital

GE Digital

GE Digital is a leading software company for the Industrial Internet. Products include Industrial Cyber Security for Operational Technology (OT).

ShadowDragon

ShadowDragon

ShadowDragon develops digital tools that simplify the complexities of modern investigations that involve multiple online environments and technologies.

Jeffer Mangels Butler & Mitchell LLP (JMBM)

Jeffer Mangels Butler & Mitchell LLP (JMBM)

JMBM is a full service law firm providing counseling and litigation services in a wide range of areas including cyber security.

Irdeto

Irdeto

Irdeto is the world leader in digital platform security, protecting platforms and applications for media & entertainment, gaming, connected transport and IoT connected industries.

Anglo African

Anglo African

Anglo African is an information technology firm providing end-to-end solutions to different industries, from IT Infrastructure to DataCom as well as Cloud & InfoSec services.

Balbix

Balbix

Balbix BreachControl™ is the industry’s first system to leverage specialized AI to provide comprehensive and continuous predictive assessment of breach risk.

Secure Code Warrior

Secure Code Warrior

Secure your code from the start with gamified, scalable online secure coding training for software developers.

Combined Selection Group (CSG)

Combined Selection Group (CSG)

CSG are Global Talent Experts, we operate across 7 specialist sectors, including Information Technology and Cybersecurity, and take a pro-active approach to executive search and headhunting.

Trusona

Trusona

Trusona is a pioneer and leader in passwordless two-factor authentication (2FA).

Zenity

Zenity

Zenity is the first and only security governance platform for low-code/no-code applications.

WinMagic

WinMagic

At WinMagic, we’re dedicated to making authentication and encryption solutions that protect data without causing user friction so that everyone can work freely and securely.

Pangu Laboratory

Pangu Laboratory

Beijing Qi an Pangu Laboratory Technology Co., Ltd. was established on the basis of Pangu laboratory, a well-known cyber security team.

Knostic

Knostic

Knostic is an early stage startup developing a risk management and governance platform designed for enterprise large language models (LLM).

Socket

Socket

Socket protects software applications and critical services from malware and security threats originating in open source code.

Sphinx

Sphinx

Sphinx provide advanced security consulting services and cyber solutions to federal and private industry.