Singapore Cyber Threat Landscape A 2025 Outlook
April 25th, 2025
Contributor: Aleena Jibin
Who should read this?
From the rise of phishing scams to the growing threat of ransomware, Singapore is facing an unprecedented surge in cyber attacks. These incidents raise a crucial question: Are organizations in Singapore truly prepared for the growing cyber risks? The urgency is clear: According to the CSA Singapore Cybersecurity Health Report, over 8 in 10 organizations in Singapore have encountered a cyber security incident in the past year.
A significant part of this vulnerability lies in Singapore’s status as a major data centre hub in Asia Pacific. With large servers from tech giants located here, cyber criminals target these assets to cause maximum damage. The prominence of Singapore’s data centre industry makes it an attractive target for malicious actors, further escalating the risk of cyber attacks.
As Singapore’s digital economy continues to grow, so too does the exposure to cyber threats. Sectors such as finance, healthcare, and manufacturing are particularly vulnerable to ransomware and data breaches. Yet only 1% of Singaporean companies are fully prepared to tackle these risks, exposing a massive gap in their defenses.
This blog will explore the major cyber threats organizations face in Singapore, delve into the reasons behind these risks, and emphasize why enhancing cyber security measures is no longer optional but essential to protect business continuity.
Major Cyber Threats in Singapore 2024
Cyber threats have been rising in Singapore, with phishing scams, DDoS attacks, and ransomware becoming more common. A recent exercise revealed that 17% of over 4,500 employees clicked on phishing links within just two weeks, highlighting how vulnerable employees remain to basic social engineering tactics.
In 2024, the country experienced a significant surge in cyber attacks, impacting industries ranging from finance and healthcare to government operations. Here are some of the most prominent threats organizations face:
- Phishing and social engineering-Phishing is one of the biggest cyber security threats in Singapore. Cyber criminals trick people into giving up personal information by pretending to be trusted sources like banks, government agencies, or healthcare organizations. They’re getting better at it by using AI to create more convincing emails. In fact, the information services sector is hit the hardest, with almost 40% of phishing incidents affecting it. To make things worse, these criminals now use HTTPS to make their fake websites look more real. This shows how important it is for companies to train employees on how to spot phishing scams and avoid falling for these tricks.
- Botnets and DDoS attacks-DDoS attacks are also becoming a bigger problem in Singapore. These attacks flood websites and networks with traffic, causing them to crash and stop working. Last year alone, there were over 87,000 DDoS attacks. One of these attacks reached 728 Gbps, which is huge! As more devices around the world are hijacked, Singapore’s digital infrastructure is under more pressure to defend against these disruptions. Businesses need stronger protections to keep their services running smoothly and avoid costly downtime.
- Ransomware and data breaches-Ransomware is still a serious threat, especially for industries like finance, healthcare, and manufacturing. Cyber criminals steal sensitive data and demand payment to unlock it. In 2024, the manufacturing sector was hit the hardest, with 31% of ransomware attacks targeting it. These criminals often use a trick called double extortion, where they steal the data, encrypt it, and demand money to release it and prevent it from being leaked. This can cause major disruptions and financial losses for companies.
- Supply chain attacks and vulnerabilities-Cyber criminals are also targeting third-party vendors to get to larger organizations. This is called a supply chain attack, and it can lead to data breaches, damage to a company’s reputation, and business interruptions. In 2024, many Singaporean companies faced data leaks because of vulnerabilities in their third-party vendors. For example, data from companies like a hotel booking platform and a gold store were found on the dark web. This shows why it’s crucial for businesses to ensure that their partners follow strong cyber security practices as well.
Cyber Security Readiness in Singapore: How Organizations Can Close the Gap
As cyber threats evolve and become more sophisticated, many organizations fail to address critical areas of their cyber security, leaving them vulnerable to attacks. According to findings from Kaspersky Security Network, 2024 saw over 21 million cyber attacks originating from compromised servers in Singapore, making it the region’s hotspot for malicious activities. This surge in attacks pushed the country to 8th place globally as a source of cyber threats.
This alarming upward trend signals that Singapore is increasingly becoming a major target and a source of cyber crime. Organizations must recognize that the threat is not only growing but becoming more sophisticated. Immediate action is required to address vulnerabilities before they result in serious breaches and damage to business operations.
Here are some of the key factors contributing to these growing cyber threats, and why organizations need to take immediate action to strengthen their cyber security posture:
1. Human Error Driving Cyber Attacks
Employees are often the weakest link in cyber security. Phishing attacks and social engineering are the most common ways cyber criminals gain access to systems. Employees might fall victim to phishing emails, which can lead to data breaches or malware infections.
What businesses can do: Instead of assuming that staff members are fully aware of the risks, organizations should provide ongoing cyber security training and awareness programs. It is crucial to ensure that employees understand the risks associated with phishing and social engineering and are periodically tested with simulated phishing exercises. Employees should be encouraged to remain cautious when interacting with emails, links, and attachments, even if they appear to come from trusted sources.
2. Lack of Preparedness for Cyber Attacks
Many organizations fail to prepare for cyber attacks, assuming they won’t happen. However, the reality is that no organization is immune to cyber threats. Whether from hackers or insider threats, cyber attacks can occur unexpectedly and cause significant damage.
What businesses can do: Prepare for the worst by having a well-defined incident response plan (IRP) in place. Periodically test the plan with mock cyber attack scenarios. Make sure everyone in the organization knows their role in case of a breach and ensure that recovery steps are clear and practiced.
3. Cyber Security not Given Enough Priority Across the Organization
Cyber security is often seen as an IT issue, but in reality, it should be a priority for everyone in the organization. If leadership does not emphasize the importance of cyber security, employees may not take it seriously.
What businesses can do: Leaders could set the tone by making cyber security a core part of the organization’s culture. From senior management to entry-level employees, everyone should understand the importance of protecting sensitive data. Provide regular cyber security updates and involve all departments in discussions around security practices.
4. Third-Party Vendor Security are Often Overlooked
Organizations tend to focus on securing their own systems but often neglect the security of third-party vendors, which can be a major vulnerability. Hackers often target suppliers or partners as a way to breach larger organizations.
What businesses can do: Organizations could periodically assess the cyber security practices of their third-party vendors. Contracts with vendors should include clauses that require adherence to strong cyber security measures. Additionally, organizations should use tools to monitor vendor security and ensure compliance with their own security policies.
5. Underestimating the Importance of Updating Security Measures
Cyber threats are always changing, and security measures that worked before might not be enough today. To stay safe, organizations need to periodically update their security plans to keep up with new risks and changes in the business. This means reviewing security policies to make sure they match the latest threats and adjusting to any internal changes. By periodically updating their security strategies, organizations can stay ahead of risks and better protect their data, systems, and operations.
By focusing on these often-overlooked areas, organizations can significantly improve their cyber security posture and be better prepared to handle the growing threat landscape. Small changes in awareness, processes, and technology can make a significant difference in defending against cyber attacks.
Why Singapore’s Organizations Need to Act Now
The impact of cyber threats is already evident across organizations. According to recent reports, 48% of companies have experienced business disruptions, 46% have suffered data loss, and 43% have faced reputational damage. On top of that, 31% have incurred financial losses, and 27% have lost intellectual property or trade secrets.
Despite these challenges, many organizations remain unprepared. Even as cyber attacks increase in both frequency and sophistication, 46% of organizations still believe they are unlikely to be targeted, which can lead to a false sense of security. This mindset needs to change. The growing scale and complexity of cyber threats demand a more comprehensive and proactive approach to cyber security.
It’s time for leaders to take decisive action, strengthen security across all areas of their organizations, and set the right example for a safer, more secure future.