Web threats in Singapore drop; AI sparks new security concerns

Web threats in Singapore have shown a consistent decline year-on-year for the second quarter of 2024, with over 1.1 million web threats detected on computers of Kaspersky Security Network (KSN).

According to the latest findings from Kaspersky, one in four KSN users in Singapore suffered from web threats in the same quarter. This places Singapore at 38th globally and second in the Southeast Asia region in terms of risks associated with web surfing.

KSN is a distributed infrastructure dedicated to processing cybersecurity-related data from millions of voluntary participants worldwide. The data is collected from Kaspersky customers who have installed the company's cybersecurity software and provided information voluntarily.

Web threats cover various cybersecurity risks that can cause undesirable events or actions through the internet. These include well-known threats such as phishing, malware, and the exploitation of vulnerabilities in browsers or infected plugins via brute force attacks or spoofing.

The decline in detected web threats aligns with findings from the Cyber Security Agency of Singapore's 2023 Cyber Landscape report. Around 4,100 phishing attempts were reported in 2023, marking a 52% decline from the 8,500 cases noted in 2022.

This marks the fourth consecutive year in which Kaspersky has reported a decline in web threats detected in the same quarter. However, cybercriminals have become more adept at leveraging technology and global events to exploit digital vulnerabilities. Artificial intelligence (AI), for example, is increasingly used by cybercriminals to automate and personalise phishing attacks. AI-driven campaigns typically create convincing messages aimed at deceiving users, and the use of such automated tools may result in higher success rates in compromising users.

With 2024 being dubbed the "year of elections" globally, cybercriminals are now exploiting these significant global events for malicious cyber activities, Kaspersky states. This includes creating and spreading deepfakes of politicians, phishing, malware distribution, spreading misinformation, and other forms of disruption such as hacking, spying, and tampering with election results. To safeguard against the evolving risks posed by web threats, Singapore has proposed new legislation to combat deepfakes during elections.

"The nature of web threats will continue to grow in complexity as cybercriminals seek more sophisticated ways to advance their modus operandi. Singapore has made considerable strides to combat and defend against web threats, but users remain susceptible to the heightened risks online. Against this backdrop, it is crucial for users to keep abreast with the latest web threats and improve their cyber hygiene," said Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.

Kaspersky recommends several guidelines to stay safe online. For enterprises, it suggests keeping software updated, regularly backing up data, assessing and auditing supply chains, monitoring network access and activity, setting up a security operation centre (SOC) with tools like Kaspersky Unified Monitoring and Analysis Platform (KUMA), using the latest threat intelligence information, and educating employees on cybersecurity literacy with platforms like Kaspersky Automated Security Awareness Platform.

For consumers, recommendations include avoiding suspicious messages and links, using strong and unique passwords, implementing two-factor authentication (2FA), verifying website legitimacy before entering credentials or payment details, using reliable security solutions, and downloading applications only from verified sources.