Infodigits Newsletter Vol1-2022

NEWSLETTER

“Based on statistics from the
Commercial Crime Investigation

Department at Royal Malaysia
Police, Malaysian suffered
losses amounting to about

RM2.23billion on cybercrime
frauds since 2017.”

Web Threat Analysis in Malaysia
over the past 5 years

The global cybersecurity company reveals the latest trend of web threats in Malaysia over the past
five years. The data gathered from 2017 till 2021 presented an exponential growth in web. From
just over 16 million detections, it is up at more than 61 million last year or a whopping three-digit
climb (267%) Read more on page 2

CONTENTS

1. Digitalisation Achievements

PAGE 1

2. Web Threats Analysis in Malaysia Over The Past 5 Years

PAGE 2

3. What is Social Engineering?

PAGE 3

6. Kenali Digital Hero

4. Tips IT PAGE 4
5. References
PAGE 4
PAGE 5

i

SIRIM Digital will help SIRIM to
generate online revenue,

improve SIRIM customers and
partners experiences as well as

SIRIM's employees.

Ts. Tengku Intan Narqiah Tengku Othman
Chief Digital & Information Officer

Group Digitalisation & Information Technology

DIGITALISATION
ACHIEVEMENTS

SIRIM Digital is a Digital Transformation Program that
will change SIRIM in adopting new business processes
through digital technology.
This transformation will help SIRIM to generate online
revenue, improve SIRIM customers and partners
experiences as well as SIRIM's employees.
From 2021 to February 2022, GDIT as value enabler
has successfully implemented:

1

MALAYSIA SEES 266% SPIKE IN

WEB THREATS SINCE 2017

The global cybersecurity company reveals the latest trend of web threats in
Malaysia over the past five years. The data gathered from 2017 till 2021
presented an exponential growth in web. From just over 16 million
detections, it is up at more than 61 million last year or a whopping three-
digit climb (267%).

Based on Kaspersky’s data, there was a dip in terms of web threats
detections in 2019, before climbing to 33% in 2020 and another additional
26% in 2021.

Web threats are attacks done via browsers to spread malicious programs. The cybercriminals use two methods
to penetrate systems – exploiting vulnerabilities in browsers and the plugins or drive-by download, and social
engineering, which requires the user participation, that the cybercriminals make the victims believing that they
are downloading a legitimate program.

Chart: Cyberthreat Trends 2017 – 2021 Table: Cyberthreat Trends 2017 – 2021

Local threats are malware infections spread through removable USB drives, CDs and DVDs, and other offline
methods. With the pandemic entering its third year, shift to online has closed offices and schools which may have
contributed to the steady decline of this type of attack.

Based on statistics from the Commercial Crime Investigation Department at Royal

Malaysia Police, Malaysian suffered losses amounting to about RM2.23billion on
cybercrime frauds since 2017. “Amidst this rise and fall in web and local threats, we can see that the

number of scams and breaches are increasing year after year. And it’s interesting because attackers are now
resorting to non-technology focused attacks, exploiting human vulnerabilities, involving all sorts of scams through
SMS, automated phone calls, popular messengers, social network and others. This require vigilance from users,
from companies, and from government bodies and regulators to ensure that we are building a safer cyberspace
as we progress technologically,” says Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.

For users, here are the top online security tips for to ensure you can play your part in cyber-vigilance:
a) Follow the rules of cyber-hygiene. Use strong passwords for all accounts, do not open suspicious links from
emails and IMs, never install software from third-party markets, be alert and use a reliable security
solution.
b) Employ common sense before handing over sensitive information. Do not readily share private or
confidential data online.
c) Never click on unsafe links nor open suspicious email attachments. Avoid clicking on links in spam
messages or on unknown websites. Avoid opening any dubious-looking attachments.

Source : 2

WHAT IS SOCIAL Signs of a social engineering attack
ENGINEERING?
15 tips to avoid becoming a victim of a
Social engineering defined social engineering attack

For a social engineering definition, it’s the art of
manipulating someone to divulge sensitive or confidential
information, usually through digital communication, that
can be used for fraudulent purposes.

Unlike traditional cyberattacks that rely on security
vulnerabilities to gain access to unauthorized devices or
networks, social engineering techniques target human
vulnerabilities. For this reason, it’s also considered
human hacking.

Cybercriminals who conduct social engineering attacks are
called social engineers, and they’re usually operating with
two goals in mind: to wreak havoc and/or obtain valuables
like important information or money.

How social engineering works

Source : 3

KENALI DIGITAL HERO

Pada tahun 2020, SIRIM Berhad telah mengadakan Pertandingan
Hackathon yang pertama di mana ianya dikelolakan oleh GDIT dan
pertandingan tersebut telah disertai oleh anggotakerja SIRIM dari
pelbagai Jabatan di SIRIM Berhad.
Pemenang Pertama atau lebih dikenali sebagai Conqueror adalah dari
Kumpulan The Numbers dari Jabatan Kewangan SIRIM Berhad yang
telah memenangi Hadiah Wang Tunai sebanyak RM2000/- dengan
Projek yang diberi nama Track Miles. Projek ini dapat menjejaki setiap
perjalanan kerja yang dituntut oleh anggota kerja.
Kumpulan ini terdiri dari 5 anggotakerja Pn Zahidah, Pn. Fatihah, Pn
Hazila, Pn Saajidah dan diketuai oleh Pn Sazarina Binti Kamsani. Menurut
beliau, mereka sangat teruja dengan pertandingan ini kerana ianya
berkenaan dengan Inovasi.
Buat julung kalinya, program seperti ini dapat mencungkil bakat dari
anggota kerja yang tidak mempunyai latarbelakang Teknologi Maklumat
menyertainya. Ianya dapat menyerlahkan pengalaman bagi membina
inovasi dalam menaiktaraf kerja-kerja seharian. Harapan beliau, pihak
GDIT dapat mengadakan acara Hackathon ini sebagai acara tahunan di
masa akan datang.

TIPS IT

4

REFERENCES

1. Malaysia Sees 266% Spike In Web Threats Since 2017
https://www.businesstoday.com.my/2022/02/26/malaysia-sees-266-spike-in-web-threats-since-2017/

2. What is Social Engineering?
https://us.norton.com/internetsecurity-emerging-threats-what-is-social-engineering.html

Untuk sebarang pertanyaan, sila ajukan melalui Service Desk (https://servicedesk.sirim.my/)
atau email [email protected].
5