AS Malaysia accelerates its digital transformation, a new security challenge is emerging that cannot be ignored.
Cyber terrorism is no longer a distant threat confined to Hollywood films or geopolitical rivalries. It is a real and evolving danger capable of disrupting critical infrastructure, spreading extremist ideologies, damaging economies and threatening public safety.
Recent developments show that cyber threats are becoming more sophisticated and more damaging. Criminal and extremist groups increasingly use digital platforms to recruit followers, spread propaganda, raise funds and target essential services.
The cyberattack on Malaysia Airports Holdings Berhad (MAHB) in March 2025, which reportedly involved a ransom demand, served as a reminder that the country’s critical infrastructure remains vulnerable.
Combined with the thousands of cyber incidents reported annually and the billions of ringgit lost to cybercrime, the question is no longer whether Malaysia will face cyber terrorism, but whether it is prepared to deal with it.
To its credit, Malaysia has taken important steps to strengthen cybersecurity. The Cyber Security Act 2024 introduced mandatory reporting requirements for incidents affecting National Critical Information Infrastructure (NCII) and established standards for critical sectors.
The Malaysia Cyber Security Strategy 2025-2030 also outlines plans to strengthen cyber governance, protect infrastructure, build talent and improve public awareness.
These are important developments. However, they focus largely on cybersecurity and cybercrime rather than the broader challenge of cyber terrorism.
Malaysia still lacks a clear legal definition of cyber terrorism and a dedicated strategy to address it.
Without clear definitions, agencies may struggle to distinguish cyber terrorism from ordinary cybercrime or online extremism, leading to inconsistent enforcement and policy responses.
Malaysia should begin by establishing a legal framework that clearly defines cyber terrorism and recognises its various forms, including online radicalisation, recruitment, financing, propaganda and cyberattacks capable of causing physical damage to critical infrastructure.
Clear laws would strengthen enforcement while protecting legitimate online expression. Legal reform alone, however, is not enough.
Malaysia also needs a dedicated national strategy that brings together law enforcement agencies, defence institutions, intelligence services, cybersecurity experts and the private sector.
Cyber threats evolve rapidly, and fragmented responses create opportunities for hostile actors to exploit weaknesses.
At the same time, stronger coordination between existing agencies is essential. Bodies such as CyberSecurity Malaysia, the National Cyber Security Agency (NACSA) and enforcement agencies already play important roles.
However, there may be merit in establishing a dedicated Cyber Defence Command under the National Security Council or Ministry of Defence to coordinate responses, conduct cyber defence exercises and strengthen intelligence gathering.
Because cyber terrorism is a cross-border threat, international cooperation is equally important. Malaysia should continue working closely with ASEAN partners and other countries through intelligence sharing, joint investigations and cyber defence exercises.
Technology companies and social media platforms must also do more. Digital platforms are increasingly used to spread extremist content, recruit followers and conduct disinformation campaigns.
Malaysia’s efforts to regulate large social media platforms provide an opportunity to strengthen safeguards against such activities while promoting greater accountability and transparency.
Investment in cybersecurity must also be viewed as a national priority. Greater resources should be directed towards research, talent development, infrastructure protection and advanced threat detection technologies.
Regular cyber defence exercises should be conducted to test the readiness of both public and private sector organisations.
Perhaps the most overlooked aspect of cybersecurity is public awareness. Technology alone cannot protect society if citizens remain vulnerable to misinformation, online manipulation and extremist narratives.
Digital literacy and public education should become key components of Malaysia’s security strategy.
Cyber terrorism is one of the defining security challenges of the twenty-first century. Malaysia has laid important foundations through recent legislation and policy reforms, but more needs to be done.
Clear laws, effective coordination, international cooperation, sustained investment and an informed public are all essential if Malaysia is to remain secure in an increasingly digital world.
The digital age offers enormous opportunities for economic growth and social progress, but it also exposes nations to new risks. Malaysia cannot afford to remain reactive.
Protecting cyberspace is ultimately about protecting the country’s security, prosperity and future.
R. Paneir Selvam is Principal Consultant at Arunachala Research & Consultancy Sdn Bhd (ARRESCON), a think tank specialising in strategic and geopolitical analysis.
The views expressed are solely of the author and do not necessarily reflect those of MMKtT.
- Focus Malaysia.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.