February 12, 2021
Singapore Reacts To SolarWinds Hack Through Revised Cybersecurity Measures
The Monetary Authority Of Singapore recently rolled out revised plans for countering cybersecurity threats in light of the recently discovered SolarWinds hack in the U.S. The new measures will allow financial institutions in the city state to shield themselves more effectively against hacking. The MAS guidelines require financial institutions in the country to take a more proactive approach to evaluating their third party providers and vendors. Banks, insurance companies, trading firms and companies that offer remittance services will be required to adhere to the new guidelines.
SolarWinds is a Texax-based tech company that provides software solutions. However, it is not just any software company. The network management company provides its services to a multitude of companies including Microsoft. SolarWinds has more than 300,000 clients including government agencies such as the U.S Cyber Command, the FBI, Homeland Security and many others.
Hackers believed to be Russian managed to hack into the network management company and injected a malware into SolarWinds' program called Orion which was downloaded by more than 18, You may also like: Autel diagnostic scanner. 000 clients as part of updates. The hackers were thus able to expand their infiltration stealthily and with ease. It is believed that the hackers went about their business undetected for more than 9 months, which is enough time to steal a lot of data which can later be used to carry out cyber warfare and other malicious activities.
The SolarWinds hack is believed to perhaps be the largest cybercrime activity of the century. Analysts believe that it went on for so long before it was noticed because of the presidential elections. The concern now is that it is still unclear what kind of sensitive data the cyber attackers managed to steal. Another major concern is that it was such a deep hack that experts are unsure of how to eliminate the extensive threat.
If the governments of Singapore and other countries are not afraid of the hack, then they definitely should be. If the hackers can infiltrate systems in the U.S, then they can also infiltrate other governments and cause unknown damage. For example, a malicious hacker may disrupt essential systems, causing a systemwide crash.
Singapore's government is taking precautionary measures through MAS by implementing the necessary measures to ramp up protection measures against cybersecurity threats. Its approach particularly focuses on financial services because they are an essential part of the economy and disruption to such services may bring an economy to its knees.
"The recent spate of cyberattacks on supply chains, which targeted multiple IT service providers through the exploitation of widely-used network management software, is a clear indication of a worsening cyber threat environment," the Monetary Authority of Singapore recently noted in a press statement.
The recently released guidelines aim to protect the financial sector which is the most sensitive to malicious cyber-attacks, especially with the increasing use of social media. The Central Bank of Singapore stressed the need for extensive oversight on third-party providers to avoid loopholes that may pave way for hacks.
Closing the loopholes through that may arise through third-parties should be a strong line of defense that will minimize exposure. As per the recent guidelines, financial institutions are expected to vet third parties and scrutinize their offerings before signing contracts or entering into agreements. This includes thoroughly evaluating and reviewing software code before it is approved for use.
The guidelines also require financial institutions to conduct stress tests to determine if their cyber defenses are sufficient. The guidelines also highlight the need for organizational structures to have people equipped with the right skills even in the board of directors. For example, the chief information security officer and chief information officer should have the necessary skill and experience. They should also take on the work of managing cybersecurity risks.
The right measures are increasingly necessary with the increased reliance on services provided by third-par...
SolarWinds is a Texax-based tech company that provides software solutions. However, it is not just any software company. The network management company provides its services to a multitude of companies including Microsoft. SolarWinds has more than 300,000 clients including government agencies such as the U.S Cyber Command, the FBI, Homeland Security and many others.
Hackers believed to be Russian managed to hack into the network management company and injected a malware into SolarWinds' program called Orion which was downloaded by more than 18, You may also like: Autel diagnostic scanner. 000 clients as part of updates. The hackers were thus able to expand their infiltration stealthily and with ease. It is believed that the hackers went about their business undetected for more than 9 months, which is enough time to steal a lot of data which can later be used to carry out cyber warfare and other malicious activities.
The SolarWinds hack is believed to perhaps be the largest cybercrime activity of the century. Analysts believe that it went on for so long before it was noticed because of the presidential elections. The concern now is that it is still unclear what kind of sensitive data the cyber attackers managed to steal. Another major concern is that it was such a deep hack that experts are unsure of how to eliminate the extensive threat.
If the governments of Singapore and other countries are not afraid of the hack, then they definitely should be. If the hackers can infiltrate systems in the U.S, then they can also infiltrate other governments and cause unknown damage. For example, a malicious hacker may disrupt essential systems, causing a systemwide crash.
Singapore's government is taking precautionary measures through MAS by implementing the necessary measures to ramp up protection measures against cybersecurity threats. Its approach particularly focuses on financial services because they are an essential part of the economy and disruption to such services may bring an economy to its knees.
"The recent spate of cyberattacks on supply chains, which targeted multiple IT service providers through the exploitation of widely-used network management software, is a clear indication of a worsening cyber threat environment," the Monetary Authority of Singapore recently noted in a press statement.
The recently released guidelines aim to protect the financial sector which is the most sensitive to malicious cyber-attacks, especially with the increasing use of social media. The Central Bank of Singapore stressed the need for extensive oversight on third-party providers to avoid loopholes that may pave way for hacks.
Closing the loopholes through that may arise through third-parties should be a strong line of defense that will minimize exposure. As per the recent guidelines, financial institutions are expected to vet third parties and scrutinize their offerings before signing contracts or entering into agreements. This includes thoroughly evaluating and reviewing software code before it is approved for use.
The guidelines also require financial institutions to conduct stress tests to determine if their cyber defenses are sufficient. The guidelines also highlight the need for organizational structures to have people equipped with the right skills even in the board of directors. For example, the chief information security officer and chief information officer should have the necessary skill and experience. They should also take on the work of managing cybersecurity risks.
The right measures are increasingly necessary with the increased reliance on services provided by third-par...
Posted by: autelds708 at
06:04 AM
| No Comments
| Add Comment
Post contains 655 words, total size 4 kb.
18kb generated in CPU 0.0081, elapsed 0.0345 seconds.
35 queries taking 0.0294 seconds, 90 records returned.
Powered by Minx 1.1.6c-pink.
35 queries taking 0.0294 seconds, 90 records returned.
Powered by Minx 1.1.6c-pink.
