top of page
Image by Jakub Żerdzicki

SINGAPORE Scorecard

Singapore is a textbook “high-maturity, high-threat” environment. CSA’s Cybersecurity Strategy 2021, the Cybersecurity Act, CII regulation, and proactive cyber-health reporting put Singapore at the top end of ASEAN in terms of governance, visibility, and capability.

​

At the same time, its role as a wealthy, densely digitized, financial and tech hub means it is constantly targeted by ransomware crews, phishing actors, and global fraud networks. Phishing and ransomware cases have climbed significantly in recent years, and scam losses regularly exceed half a billion SGD per year, despite strong countermeasures.

Overall Position : A highly digital, high-value target with very strong cyber maturity, high but managed threat activity, and a massive scam problem that it is actively fighting with aggressive regulation and tech controls.

​​​

                                                      Cyber Maturity                                            9/10                                                   One of the most mature in ASEAN; strong strategy, CSA, CI protection, and governance.

​​

                                                     Threat Activity                                             8/10                                                      High ransomware & phishing volumes; constant targeting of finance, govt, and enterprises.

​​

                                                     Digital Exposure                                          9/10                                                                               Extremely digital society: banking, smart nation, cloud, critical infrastructure.

​​

                                                     Law Enforcement Capability                        9/10                                                                               Very strong, tech-savvy enforcement and fast regulatory response to scams.

​​​​

                                                     Geopolitical Risk                                          6/10                                                      High-value economic/tech hub; moderate geopolitical flashpoint compared to PH/VN/MM.

​​​

                                                    Scam/Fraud/Trafficking                               7/10                                                   Huge scam victimization and losses, but as a target and financial hub, not a scam-compound base.

 CYBER MATURITY ASSESSMENT

Singapore is top-tier in ASEAN for cyber maturity. It has the Singapore Cybersecurity Strategy 2021, a dedicated national agency (CSA), strong CI protection laws, and regular cyber health reporting and exercises.

​

  • Singapore Cybersecurity Strategy 2021 sets 3 pillars: build resilient infrastructure, enable safer cyberspace, enhance international partnerships + 2 “enablers”: develop workforce & ecosystem.

  • Cyber Security Agency of Singapore (CSA) leads national cyber defence, CI regulation, and public-private coordination.

  • Cybersecurity Act regulates Critical Information Infrastructure (CII) and imposes incident reporting, audits, and security requirements on operators.

  • CSA publishes regular Singapore Cyber Landscape and Cybersecurity Health Reports, giving good visibility into threats and posture.

9/10

DIGITAL EXPOSURE

Singapore is a hyper-connected smart nation: huge cloud footprint, critical finance and trade systems, smart infrastructure, and nearly universal internet/mobile penetration. That makes its attack surface enormous relative to its size.

​

  • Advanced Smart Nation initiatives; digital IDs, e-gov, integrated public services.

  • Major financial center with heavy use of e-payments, online banking, and real-time transfers.

  • Significant data center and cloud presence; regional hub for multinational workloads.

  • Nearly full broadband and smartphone penetration.

9/10

GEOPOLITICAL & ECONOMIC DRIVERS

Singapore is a strategic economic and tech hub, which attracts espionage and strategic cyber operations. But it isn’t sitting in a hot territorial conflict like the PH/VN South China Sea frontline or an active civil war like Myanmar.

​

  • Regional hub for trade, finance, tech, and military cooperation, so attractive for economic and strategic espionage.

  • Plays a balancing role among major powers (US, China, ASEAN), reducing direct “frontline” pressure.

  • No active internal armed conflict or insurrection; high political stability.

9/10

CURRENT THREAT ACTIVITY

Singapore faces intense, sustained threat activity: ransomware, phishing, and targeting of high-value industries like finance, ICT, and manufacturing. It’s a prime target because of its wealth, connectivity, and data concentration.

​

  • CSA’s Singapore Cyber Landscape 2024/2025:

  • 159 ransomware cases in 2024, up 21% from 2023.

  • 6,100 phishing cases in 2024, a 49% surge from 4,100 in 2023; banking/financial services most spoofed.

  • SOCRadar reports 149 distinct ransomware attacks in 2023, with SG as the primary target in 28 cases, showing global actors see SG as a high-value node.

  • Highly interconnected infrastructure means SG is often part of multi-country campaigns.

8/10

LAW ENFORCEMENT & CYBERCRIME CONTROL

Singapore’s law enforcement and regulatory response to cybercrime and scams is fast, aggressive, and tech-heavy: new laws, real-time freezing of accounts, and orders to big tech to curb spoofing.

​

  • Scams & Cybercrime Briefs by police track cases closely; mid-2025: scam & cybercrime cases fell 21.5% vs H1 2024, still 22,476 cases (87.5% scams).

  • New law allows police to freeze bank accounts pre-emptively if victims are likely to transfer funds to scammers; can act within hours.

  • Government uses an SMS sender registry (e.g., “gov.sg”) and just ordered Apple/Google to block government spoofing on iMessage/Google Messages under the Online Criminal Harms Act.

  • Coordinated responses between CSA, MAS (financial regulator), SPF, and banks.

9/10

SCAM / HUMAN TRAFFICKING / FRAUD 

Scam activity in Singapore is massive from a victim standpoint—hundreds of millions of SGD lost, with a huge percentage of the population encountering scams regularly. SG is a major target and financial node, but not a scam-compound host like Cambodia/Myanmar.

​​

  • Mid-2025: 22,476 scam & cybercrime cases; 87.5% scams.

  • H1 2024: scam victims lost S$385.6m; on track to exceed S$770m if trend continued; record S$660.7m lost in 2022.

  • Feedzai 2024 report: 65% of Singaporeans encounter scam attempts at least once a month; 54% say scam encounters increased over past year.

  • Scams often spoof local banks and government agencies (IRAS, MOF, SingPost).

7/10

bottom of page