Cyber Security Does Not Follow From Cyber Awareness

Uploaded on 2019-09-24 in TECHNOLOGY--Resilience, FREE TO VIEW

A nationwide study by the Cyber Security Agency of Singapore (CSA) has found that while nearly half of its respondents had experienced a cyber security incident and that awareness of its dangers are high, some are just complacent. In the release of the third edition of the annual Cybersecurity Public Awareness Survey the CSA said 48 per cent of the 1,105 respondents had experienced at least one cyber incident in 2018.

The agency added that more than a third of the respondents reported encountering advertisement pop-ups online, which can be a sign of malicious software infection. This was the most commonly cited security incident, followed by having their data leaked by a company, which about 15 per cent of respondents experienced.

Other types of cyber incidents included receiving a phishing e-mail, being infected by ransomware and having their computer or device controlled by hackers illegally. The latest survey was the first time CSA measured the types and frequency of cyber-security incidents its respondents encountered.

When compared with results released last year (2018), there have been some improvements. The survey found that in 2018, 36 per cent of Singaporeans enabled Two-Factor Authentication (2FA) for their online accounts. This is 10 percentage points more than in 2017. 2FA provides an additional layer of security by requiring users to key in a code that is either sent to their mobile phones or generated by a token.

The CSA said the adoption of some cyber-security practices "needs to be improved", highlighting how there have been decreases in their take-up rate. The survey found that there has been a decrease in the proportion of respondents who had updated the software of their mobile devices.Mobile software manufacturers usually roll out stronger cyber defences in these updates.

According to CSA, 80 per cent of the respondents updated their software in 2018, down from 83 per cent in 2017.
Additionally, out of those who installed software updates or updated their phones , only half did so immediately when the update became available, compared to 55 per cent in 2017.

The proportion of respondents who had installed security applications in their mobile devices fell as well, from 53 per cent in 2017 to 45 per cent in 2018.

CSA pointed out that this was despite the fact that there was a larger proportion of respondents who acknowledged the risks of not installing security applications and knowing which ones to use and download.The majority of respondents, at least seven out of ten, showed high levels of concerns about a variety of cyber security incidents, like having their computer controlled by hackers illegally, having their information stolen or falling victim to an online scam or fraud.

At the same time, less than half of all respondents felt like they would be hit with such a cyber security incident. CSA's chief executive David Koh pointed this out, adding: "The survey shows that while Singaporeans are concerned about cyber threats and agree that they have a role to play, most believe that they are not the target of cyber criminals.

"Cyber threats are part and parcel of the digital age, and cyber-attacks will only increase. No one is immune....We need to improve our cyber hygiene so that we do not lose our hard-earned money and our precious data to cyber criminals."

Straits Times:            CSA Singapore:     Image: Marco Verch

You Might Also Read: 

Has The US Become Complacent About Resisting Cyber Attacks?:

GDPR Survey Shows 80% Non-Compliance:

 

« AI Is Changing The Cyber Security Landscape
Who’s Afraid Of Huawei? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

The Josef Group (TJG)

The Josef Group (TJG)

The Josef Group Inc. is a certified woman-owned permanent staffing agency specializing in Information Technology, Engineering, and US Government "cleared" IT candidates.

CIO

CIO

CIO provides technology and business leaders with insight and analysis on information technology trends

F-Secure

F-Secure

F-Secure defends enterprises and consumers against everything from opportunistic ransomware infections to advanced cyber attacks.

iboss Network Security

iboss Network Security

The iboss cloud is designed to deliver Network Security as a Service, in the cloud, using the best malware engines, threat feeds and log analytics engines.

Optimal IdM

Optimal IdM

Optimal IdM is a leading global provider of identity management solutions and services.

CyberESI

CyberESI

CyberESI is a Managed Security Service Provider providing 24x7 remote security monitoring and management of your mission-critical networks.

Uniscon

Uniscon

Uniscon is a leading provider of cloud security solutions in Europe.

Bit4id

Bit4id

Bit4id provides software and systems for security and identification based on PKI technology.

Pradeo

Pradeo

Pradeo Security offers a complete, automatic and seamless protection to mobile devices and applications, aligned with your organization security policy while preserving business agility.

PECB

PECB

PECB is a certification body for persons, management systems, and products on a wide range of international standards in a range of areas including Information Security and Risk Management.

CyberGRX

CyberGRX

The CyberGRX Exchange and our risk assessments-as-a-service help Enterprises and Third Parties cost-effectively identify, prioritize and mitigate risk.

RCDevs

RCDevs

RCDevs is an award-winning Software company providing security solutions designed for modern enterprise technologies and suited for SMEs to large corporations.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Snowflake

Snowflake

Empower your cybersecurity and compliance teams with Snowflake. Gain full visibility into security logs, at massive scale, while reducing costs of Security Information and Event Management systems.

xMatters

xMatters

xMatters is a digital service availability platform that helps enterprises prevent, manage, and resolve IT incidents before they can become business problems.

Hubify

Hubify

Hubify is an experienced, service-driven technology company specialising in business connectivity across mobile, data, voice, cloud, & cyber security solutions.