In the shadowy world of cybersecurity, businesses are no longer just protecting data, they are fighting for survival, say some experts.
The stark reality is that cyber threats have evolved from simple hacks to sophisticated, state-sponsored campaigns that can cripple entire industries, said Teo Xiang Zheng, vice-president of advisory at Ensign Infosecurity.
“We’re seeing state-sponsored actors with strategic patience,” he noted. “They’re not just attacking, they’re positioning themselves for future opportunities, whether for espionage or potential disruption.”
He added that geopolitical tensions have further weaponised cyberspace, with state-sponsored groups increasingly using digital infrastructure as a strategic tool.
They target critical sectors like technology, media, telecommunications, banking, and government, aiming not just for data theft but for information leverage and potential future disruption, he stressed.
These digital warriors operate with military precision. They target not just an organisation’s network, but its entire ecosystem including supply chain partners.
Prime targets are often the legal, accounting and consulting sectors who hold trusted relationships with clients and frequently access sensitive data, said Teo.
He was speaking at the launch of Ensign’s sixth cyber threat landscape report today. It comes just as Singapore is fighting against an ongoing cyberattack.
Coordinating Minister for National Security, K Shanmugam, had revealed last week that the cyber espionage group UNC3886 is actively launching cyberattacks on the Republic’s critical information infrastructure.
He said a cyberattack could disrupt electrical supply or other essential services such as water supply, transport and medical services. Banks, airports and telecom operators could be hit too, he cautioned.
Ensign’s cyber threat landscape identifies state-sponsored attacks, underground cyber crime network and vulnerable supply chains as the three significant trends in cyber attacks in the Asia-Pacific region.
The message is clear: survival in the digital age requires more than robust firewalls. It demands continuous learning, rapid adaptation, and a collaborative approach to cybersecurity. To become active defenders, organisations must share threat intelligence for organisational resilience.
According to Ensign, well-resourced attackers are using a complex underground cybercrime network that functions as a service provider. This means criminals can now execute sophisticated attacks without needing to be tech-savvy experts themselves.
Among the services provided are the initial access brokers who operate like digital real estate agents, selling illicit entry points into organisations.
There are also ransomware groups who create and sell the ransomware itself, then build a network of franchisees who use that product to launch attacks.
This approach enables them to make money in many different ways and significantly increases the number of attacks and their chances of success.
Issuing a stark warning, Teo said: “Ransomware is the new endemic flu. It’s not about if you’ll be compromised, but when.”
For businesses, the solution to enhanced cyber defence is not just better technology, but a fundamental shift in organisational culture. Businesses must embrace collective defence by sharing information in industry forums and building rapid response capabilities.
This threat intelligence will go a long way to enhancing their digital defence on top of rigorously following basic cyber hygiene rules like regular software patching and user authentication.
Said Teo: “Digital defence is no longer an IT problem, it’s a business survival strategy.”
