Operators of critical services in S’pore must urgently raise defences amid AI threats: Shanmugam
Sign up now: Get ST's newsletters delivered to your inbox
Coordinating Minister for National Security K. Shanmugam said on May 9 that some sectors such as telecommunications are at particular risk.
PHOTO: LIANHE ZAOBAO
- Cyber attackers are using advanced AI to target critical services, making attacks faster and cheaper, requiring urgent defence upgrades.
- Owners of Critical Information Infrastructure (CII) must urgently raise cybersecurity defences, with responsibility at the board level, not just IT departments, says Coordinating Minister for National Security K. Shanmugam.
- Singapore's Government is collaborating with tech firms and CII owners to defend against AI threats and become experts in using AI for cyber defence.
AI generated
SINGAPORE – Cyberattackers are targeting Singapore and using artificial intelligence (AI) to make attacks cheaper and faster.
This is a serious issue for the country, and operators of critical services here must urgently raise their defences, said Coordinating Minister for National Security K. Shanmugam on May 9.
Speaking to reporters on the sidelines of a community event in Yishun, Mr Shanmugam, who is also Home Affairs Minister, said some sectors such as telecommunications are at particular risk. The telco sector, he added, is a “high-value target” for cyberattackers.
“There are many stakeholders in dealing with these threats, all the owners of CII (Critical Information Infrastructure) – telecoms networks, for example. They have to urgently raise their cybersecurity posture,” he said.
“This has to be the responsibility at the board level. It cannot be delegated to the IT departments alone. The board of directors will have to say, ‘We are responsible for it’.”
The 11 CII sectors here are aviation, healthcare, land transport, maritime, media, security and emergency services, water, banking and finance, energy, info-communications, and government.
Mr Shanmugam said Singapore is facing sophisticated cyberattacks, some of them by state-linked attackers, and warned that such groups are integrating AI into their operations.
He mentioned UNC3886, the cyberespionage group that attacked the four major telcos here in 2025.
He said the cyberattackers posing a threat to Singapore are capable and determined.
“They can steal sensitive data. They can attack your essential services. They can play havoc with your systems.
“The attackers who are the most capable, most well-resourced, will be the ones who are adapting to advanced AI, quickly integrating into their capabilities.”
Frontier AI models, which refer to the most advanced models available, are the foremost concern.
In April, it was reported that Anthropic’s Claude Mythos was able to identify and exploit “zero-day” vulnerabilities, or flaws that were previously unknown to the software’s developers.
It was further reported that when tested, Mythos found vulnerabilities in every major browser and operating system.
This meant that in the wrong hands, it could be used to hack almost every system and cause chaos around the world, leaving cybersecurity experts struggling to keep up. Because of this danger, access to Mythos has been restricted to the highest levels of cyberdefenders.
Singapore agencies do not currently have direct access to it, but Mr Shanmugam said many of these frontier tech companies have engineering teams deployed in Singapore.
He said: “We work closely with them. We look at what they have to offer. We decide what works best for Singaporeans. We have agencies which are tasked to do this, and they are looking at it closely.”
The Cyber Security Agency of Singapore issued an advisory on April 15 warning that frontier AI models can shorten the time hackers need to engineer exploits, from months to just hours.
It urged companies to immediately patch critical vulnerabilities in internet-facing systems, which, if compromised, could cause widespread impact on company systems.
On May 5, Senior Minister of State for Digital Development and Information Tan Kiat How told Parliament that the chief executives of major financial institutions here met the Monetary Authority of Singapore to discuss collective action to be taken against the threat.
He warned that most breaches begin with unmanaged assets, such as forgotten internet-facing systems or a shadow cloud account.
Mr Shanmugam said the Infocomm Media Development Authority (IMDA) had issued an advisory to the telcos to reinforce the urgency of the matter.
An IMDA spokesperson said the advisory provides additional guidance on measures telcos can take to strengthen their defences against the potential threats posed by frontier Al models.
These include updating their internal risk models and business continuity plans to deal with the faster pace and increased complexity of Al-enabled attacks, adopting Al for cybersecurity operations, and bolstering their Al safety and governance measures.
The IMDA spokesperson added that together with other government agencies, it works closely with telcos to strengthen their cyberdefences.
“This is a continuing effort, given the dynamic tech and cyber landscape, where risks can emerge and evolve,” the spokesperson noted.
Mr Shanmugam said the Government is taking steps to work with different parties to tackle the threats posed by AI.
He said: “We have to do two things in parallel. First, we have to become better in defending ourselves against AI threats. And second, we must ourselves become experts at using AI for our own purposes.”
The Government has been building and experimenting with AI tools for cyberdefence and working with industry partners to keep pace with developments, added Mr Shanmugam.
“We will partner CII owners in this effort, which is already really a whole-of-country effort,” he said.
“We know what needs to be done urgently to strengthen our cyberdefences and we are taking the steps.”
