News
Vendors

Armis: 70% of Singapore organizations fall victim to cyberattacks in past year

November 07, 2023
Armis: 70% of Singapore organizations fall victim to cyberattacks in past year

New research from asset intelligence cybersecurity firm Armis shows organizations in Singapore are facing imminent cybersecurity challenges as a result of rising threats and outdated cybersecurity programs. Additionally, data identified that more than one-third of breached organizations faced operational downtime and financial loss.

Seventy percent of organizations in Singapore confirmed they had been breached at least once over the last 12 months and 26 percent admitted they experienced multiple breaches in the same period. These attacks had significant consequences, with over four in ten (43 percent) of respondents facing operational downtime, 37 percent experiencing financial loss and 30 percent having productivity loss and/or their data stolen.

“In Singapore, the public sector has taken significant steps to safeguard critical systems across the region,” Gwen Lee, regional director for APJ at Armis, said in a Tuesday media statement. “However, the private sector’s actions are equally crucial in shaping our standing globally and strengthening the security posture of the region against emerging threats. Currently, there is an inadequacy in the traditional security measures being used to combat the high volume and frequency of increasingly sophisticated attacks. This needs to be addressed to ensure protection and continuous operation for all industries.”

Singapore organizations are struggling to prioritize their cybersecurity efforts and minimize threats due to a lack of visibility over their environment and the use of a high number of asset management tools and threat intelligence sources, which are too reliant on manual processes.

Key findings from Armis’ research, commissioned with Vanson Bourne, include:

Singapore cybersecurity teams do not have a complete view of their attack surface, creating blind spots in their environment.

  • For respondents in Singapore, their foremost challenge is currently Internet of Things (IoT) security, followed closely by concerns about outdated legacy infrastructure and balancing the need for security with the desire to innovate and adopt new technologies quickly.
  • On an average business day, 56,000 physical and virtual assets are connected to organizational networks in Singapore companies. Regional respondents shared that only 51 percent of these assets are monitored, leaving half (49 percent) unmonitored.
  • Half (50 percent) of Singapore businesses lack complete visibility over company-owned and managed assets in their environment.
  • Organizations in Singapore cannot account for around 39 percent of their asset attributes when it comes to knowing things like asset location or the support status of these assets

Singapore organizations struggle with a high number of asset management tools and threat intelligence sources to understand their risk exposure. Without much-needed automation, this proves to be an uphill battle. 

  • Singapore respondents, on average, indicated their organization uses 13 different tools to manage assets connected to their network, while 47 percent admit to still using manual spreadsheets.
  • Organizations in Singapore consume 11 different and disparate sources of threat intelligence on average. Only between 50 percent to 56 percent of the processes related to threat intelligence are automated or orchestrated.
  • Sixty-two percent of the information gathered from threat intelligence sources is actionable on average. Thirty-two percent of respondents from Singapore reported that their organization’s cybersecurity team feels overwhelmed by the volume of cyber threat information.
  • Maximizing the use of Artificial Intelligence (AI) and Machine Learning (ML) was listed by Singapore respondents as the top priority for the upcoming year together with automating remediation.

“New technologies are intended to benefit businesses but when left unmonitored and unmanaged, can become dangerous additions to an organization’s attack surface.” according to Curtis Simpson, CISO at Armis. “Security teams must be able to continuously understand, prioritize and lead the organization through the incremental remediation of risks and exposures of greatest potential strategic and operational impact; today and as the environment continues to evolve through transformation.”

Simpson added that attackers will look to exploit any weakness possible to gain access to an organization’s network. “The responsibility lies on organizations to ensure that they have the needed oversight to see, protect and manage all physical and digital assets based on what matters most to their business.”

Industrial Cyber News Desk
Industrial Cyber News Desk

A complimentary guide to the who`s who in industrial cybersecurity tech & solutions

Free Download

Related

Cisco Talos details ArcaneDoor campaign found targeting perimeter network devices across critical infrastructure
Cisco Talos details ArcaneDoor campaign found targeting perimeter network devices across critical infrastructure
Forescout report warns of growing security risks to critical infrastructure as OT/ICS exposed data escalates
Forescout report warns of growing security risks to critical infrastructure as OT/ICS exposed data escalates
ASIS Foundation reports on impact of autonomous vehicles on security and technology
ASIS Foundation reports on impact of autonomous vehicles on security and technology
European Commission makes €112 million investment in AI, quantum research under Horizon Europe program
European Commission makes €112 million investment in AI, quantum research under Horizon Europe program
MITRE unveils ATT&CK v15 with upgraded detections, analytic format, cross-domain adversary insights
MITRE unveils ATT&CK v15 with upgraded detections, analytic format, cross-domain adversary insights
RMC
Risk Mitigation Consulting acquires Securicon, boosting cybersecurity and mission assurance offerings
Hackers target Tipton Municipal Utilities wastewater treatment plant, prompting federal investigation
Hackers target Tipton Municipal Utilities wastewater treatment plant, prompting federal investigation
New CGCYBER report warns of cybersecurity risks in marine environment due to network-connected OT systems
New CGCYBER report warns of cybersecurity risks in marine environment due to network-connected OT systems
Ukrainian CERT details malicious plan by Sandworm group to disrupt critical infrastructure facilities
Ukrainian CERT details malicious plan by Sandworm group to disrupt critical infrastructure facilities
DC3, DCSA collaborate to launch vulnerability disclosure program for defense industrial base
DC3, DCSA collaborate to launch vulnerability disclosure program for defense industrial base